标准摘要
[中文适用范围]: 本文件规定了在ISO/IEC 23220-1中定义的安全区域可信度认证的使用机制。 本文件旨在使安全区域提供者能够描述安全区域的能力和置信度,以供eID颁发者或移动eID证明服务提供者或两者进行验证。 本文件规定了: — 描述安全区域能力和置信度的要素列表; — 包含该要素列表的证书(无论是否附加到安全区域)的结构和管理。 本文件引用了现有的标准和适用的行业规范,这些标准和规范部分解决了可信度相关问题(例如,GlobalPlatform规范GPC_SPE_095[1]中规定的DLOA,FIDO联盟规范[2]中规定的MDS,以及ISO/IEC TS 23220-3中规定的SAAO),并旨在最小化它们之间的差异。 [外文原描述]: This document specifies mechanism for use of certification on trustworthiness of secure area that is defined in ISO/IEC 23220-1. This document aims at enabling secure area providers to describe capabilities and confidence level of secure area for verification by eID issuers or mobile eID Attestation service providers, or both. This document specifies: — list of elements describing capabilities and confidence level of a secure area; — structure and management for use of a certificate, affixed or not to the secure area, containing that list of elements. This document refers to existing standards and applicable industry specifications which partly address the trustworthiness related issue (e.g. DLOA specified in GlobalPlatform specification GPC_SPE_095[ 1 ], MDS specified in FIDO Alliance specification[ 2 ], and SAAO specified in ISO/IEC TS 23220-3), and aims to minimize the differences between them.
英文名称Cards and security devices for personal identification - Building blocks for identity management via mobile devices - Part 6: Mechanism for use of certification on trustworthiness of secure area