Nội dung toàn văn Decision No. 59/2008/QD-BTTTT promulgating the list of applicable forced standar
THE MINISTRY OF INFORMATION AND COMMUNICATIONS | SOCIALIST REPUBLIC OF VIETNAM |
No.: 59/2008/QD-BTTTT | Hanoi, December 31, 2008 |
DECISION
PROMULGATING THE LIST OF APPLICABLE FORCED STANDARD ON DIGITAL SIGNATURES AND SERVICES TO CERTIFY DIGITAL SIGNATURES
THE MINISTER OF INFORMATION AND COMMUNICATIONS
Pursuant to the Law on E-Transaction dated November 29, 2005;
Pursuant to the Decree No.26/2007/ND-CP dated February 15, 2007 of the Government detailing the implementation of the Law on E-Transaction on digital signatures and services to certify digital signatures;
Pursuant to the Decree No.187/2007/ND-CP dated December 25, 2007 of the Government defining the functions, tasks, powers and organizational structure of the Ministry of Information and Communications;
At the proposal of Deputy Minister of the Department of Science and Technology and Director of State Agency for Technology Innovation,
DECIDES:
Article 1. Issuing together this Decision is “the List of applicable forced standard on digital signatures and services to certify digital signatures”.
Article 2. Organizations providing the national digital signature certification services; Organizations providing the public digital signature certification services; Organizations providing the used exclusively digital signature certification services granted certificates of sufficient condition to ensure security for digital signatures by the Ministry of Information and Communications; Organizations providing the foreign digital signature certification services recognized by the Government of Vietnam must comply with the standards in the list of standards promulgated by Decision.
Article 3. This standard List is considered periodically to upgrade, amend, supplement to suit to the actual conditions of Vietnam.
Article 4. This Decision takes effect 15 (fifteen) days after its publication in the Official Gazette.
Article 5. Chief Office, Deputy Minister of the Department of Science and Technology, Director of the State Agency for Technology Innovation, the heads of agencies and units under the ministries, the relative organizations and individuals are responsible for the implementation of this Decision./.
| FOR THE MINISTER |
THE LIST
APPLICABLE FORCED STANDARD ON DIGITAL SIGNATURES AND SERVICES TO CERTIFY DIGITAL SIGNATURES
(Issuing together with the Decision No.59/2008/QD-BTTTT dated December 31, 2008 of the Ministry of Information and Communications)
No. | Type of standard | Standard signs | Full name of standards | Applicable provisions |
1 | Secret standard to HSM | |||
1.1 | Keeping secret for hardware security block HSM | FIPS PUB 140-2 | Security Requirements for Cryptographic Modules | Minimum requirement level 3 |
2 | Encrypt standard | |||
2.1 | Un-symmetric encryption and digital signatures | PKCS #1 | RSA Cryptography Standard | - Version 2.1 - Applying the diagram RSAES-OAEP to encrypt and RSASSA-PSS to sign |
2.2 | symmetric encryption | FIPS PUB 197 | Advanced Encryption Standard (AES) | Applying AES or 3DES |
FIPS PUB 46-3 | Data Encryption Standard (DES) | |||
2.3 | Secured hash | FIPS PUB 180-2 | Secure Hash Standard | Applying one of four secure hashes: SHA-1, SHA-256, SHA-384, SHA-512 |
3 | Standard to create requirement and exchange digital Certificates | |||
3.1 | Format digital Certificates and list of withdrawing digital Certificates | RFC 3280 | Internet X.509 Public Key Infrastructure - Certificate and Certificate Revocation List (CRL) Profile |
|
3.2 | Cryptographic Message Syntax | PKCS #7 | Cryptographic Message Syntax Standard | Version 1.5 |
3.3 | Private-Key Information Syntax | PKCS #8 | Private-Key Information Syntax Standard | Version 1.2 |
3.4 | Certification Request Syntax | PCKS #10 | Certification Request Syntax Standard | Version 1.7 |
3.5 | Personal Information Exchange Syntax | PKCS #12 | Personal Information Exchange Syntax Standard | Version 1.0 |
4 | Standard on policy and practices of digital signature certification | |||
4.1 | Certification Practices Framework and Certificate Policy | RFC 3647 | Internet X.509 Public Key Infrastructure - Certificate Policy and Certification Practices Framework |
|
5 | Standard on storage and access of digital Certificates | |||
5.1 | Storage Protocols and retrieving of digital Certificates | RFC 2587 | Internet X.509 Public Key Infrastructure LDAPv2 Schema | Applying RFC 2587 or RFC 4523 |
RFC 4523 | Lightweight Directory Access Protocol (LDAP) Schema Definitions for X.509 Certificates | |||
RFC 2251 | Lightweight Directory Access Protocol (v3) | Applying RFC 2251 or set of four standards RFC 4510, RFC 4511, RFC 4512, RFC 4513
| ||
RFC 4510 | Lightweight Directory Access Protocol (LDAP): Technical Specification Road Map | |||
RFC 4511 | Lightweight Directory Access Protocol (LDAP): The Protocol | |||
RFC 4512 | Lightweight Directory Access Protocol (LDAP): Directory Information Models | |||
RFC 4513 | Lightweight Directory Access Protocol (LDAP): Authentication Methods and Security Mechanisms | |||
6 | Standard on inspection of state of digital Certificates | |||
6.1 | Protocols for inspection of state of digital Certificates | RFC 2585 | Internet X.509 Public Key Infrastructure - Operational Protocols: FTP and HTTP | Applying to one or two Protocols FTP and HTTP |
------------------------------------------------------------------------------------------------------
This translation is made by LawSoft, for reference only. LawSoft is protected by copyright under clause 2, article 14 of the Law on Intellectual Property. LawSoft always welcome your comments