BS ISO/IEC 14888-2:2008

Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviated terms
5 General
6 RSA and RW schemes
7 GQ1 scheme (identity-based scheme)
8 GQ2 scheme
9 GPS1 scheme
10 GPS2 scheme
11 ESIGN scheme
Annex A (normative) Object identifiers
Annex B (informative) Guidance on parameter choice
        and comparison of signature schemes
Annex C (informative) Numerical examples
Annex D (informative) Two other format mechanisms
        for RSA/RW schemes
Annex E (informative) Products allowing message
        recovery for RSA/RW verification mechanisms
Annex F (informative) Products allowing two-pass
        authentication for GQ/GPS schemes
Bibliography

Describes digital signatures with appendix whose security is based on the difficulty of factoring the modulus in use.

This part of ISO/IEC 14888 specifies digital signatures with appendix whose security is based on the difficulty of factoring the modulus in use. For each signature scheme, it specifies: the relationships and constraints between all the data elements required for signing and verifying; a signature mechanism, i.e., how to produce a signature of a message with the data elements required for signing; a verification mechanism, i.e., how to verify a signature of a message with the data elements required for verifying. The production of key pairs requires random bits and prime numbers. The production of signatures often requires random bits. Techniques for producing random bits and prime numbers are outside the scope of this part of ISO/IEC 14888. For further information, see ISO/IEC 18031 [33] and ISO/IEC 18032 [34]. Various means are available to obtain a reliable copy of the public verification key, e.g., a public key certificate. Techniques for managing keys and certificates are outside the scope of this part of ISO/IEC 14888. For further information, see ISO/IEC 9594-8 [27], ISO/IEC 11770 [31] and ISO/IEC 15945 [32].