ISO/IEC 20248:2018
Withdrawn
A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
View Superseded by
Information technology Automatic identification and data capture techniques Data structures Digital signature meta structure
Hardcopy , PDF , PDF 3 Users , PDF 5 Users , PDF 9 Users
10-06-2022
English
04-04-2018
Important note : Users cannot be edited or removed once added to your Multi user PDF.
ISO/IEC 20248:2018 is an ISO/IEC 95948 (Public Key Infrastructure: digital signatures and certificates) application specification for automated identification services. It specifies a method whereby data stored within a barcode and/or RFID tag are structured, encoded and digitally signed. ISO/IEC 95948 is used to provide a standard method for key and data description management and distribution. It is worth noting that the data capacity and/or data transfer capacity of Automated Identification Data Carriers are restricted. This restricts the normal use of a Digital Signature as specified in ISO/IEC 95948 within automated identification services.
The purpose of this document is to provide an open and interoperable method, between automated identification services and data carriers, to read data, verify data originality and data integrity in an offline use case.
ISO/IEC 20248:2018 specifies
- the meta data structure, the DigSig, which contains the Digital Signature and encoded structured data,
- the public key certificate parameter and extension use, the DigSig Certificate, which contains the certified associated public key, the structured data description, the read methods and private containers,
- the method to specify, read, describe, sign, verify, encode and decode the structured data, the DigSig Data Description,
- the DigSig EncoderGenerator which generates the relevant asymmetric key pairs, keeps the Private Key secret and generates the DigSigs, and
- the DigSig DecoderVerifier which, by using to the DigSig Certificate, reads the DigSig from the set of Data Carriers, verifies the DigSig and extracts the structured data from the DigSig.
A successful verification of the DigSig signifies the following:
- the data was not tampered with;
- the source of the data is as indicated on the DigSig Certificate used to verify the DigSig with;
- if a secured identifier of the data carrier is included in the DigSig it contains, then the data stored on the data carrier can be considered as the original issued copy of the data; the secure identifier will be able to guarantee that the data carrier is authentic.
ISO/IEC 20248:2018 does not specify
- cryptographic methods, nor
- key management methods.
ISO/IEC 20248:2018 is used in conjunction with standard risk assessments of the use environment.
| DocumentType |
Standard
|
| Pages |
81
|
| ProductNote |
THIS STANDARD ALSO REFERS TO IETF 3986, IETF RFC 5646, ISO/IEC 15961-2, FIPS PUB 186-4, IETF RFC 4648
|
| PublisherName |
International Organization for Standardization
|
| Status |
Withdrawn
|
| SupersededBy |
| Standards | Relationship |
| NEN-ISO/IEC 20248 : 2018 | Identical |
| DS/ISO/IEC 20248 : 2018 | Identical |
| BS ISO/IEC 20248:2018 | Identical |
| ISO/IEC 15962:2013 | Information technology Radio frequency identification (RFID) for item management Data protocol: data encoding rules and logical memory functions |
| ISO/IEC 16022:2006 | Information technology — Automatic identification and data capture techniques — Data Matrix bar code symbology specification |
| ISO 639-1:2002 | Codes for the representation of names of languages — Part 1: Alpha-2 code |
| ISO/IEC 10646:2014 | Information technology Universal Coded Character Set (UCS) |
| ISO/IEC TR 14516:2002 | Information technology Security techniques Guidelines for the use and management of Trusted Third Party services |
| ISO/IEC 18004:2015 | Information technology — Automatic identification and data capture techniques — QR Code bar code symbology specification |
| ISO/IEC 15945:2002 | Information technology — Security techniques — Specification of TTP services to support the application of digital signatures |
| ISO/IEC 19790:2012 | Information technology — Security techniques — Security requirements for cryptographic modules |
| ISO/IEC 15459-2:2015 | Information technology Automatic identification and data capture techniques Unique identification Part 2: Registration procedures |
| ISO/IEC TR 29162:2012 | Information technology Guidelines for using data structures in AIDC media |
| ISO/IEC 15459-3:2014 | Information technology Automatic identification and data capture techniques Unique identification Part 3: Common rules |
| ISO/IEC 9594-8:2017 | Information technology Open Systems Interconnection The Directory Part 8: Public-key and attribute certificate frameworks |
| ISO/IEC 15417:2007 | Information technology Automatic identification and data capture techniques Code 128 bar code symbology specification |
| ISO 8601:2004 | Data elements and interchange formats Information interchange Representation of dates and times |
| ISO/IEC 24791-5:2012 | Information technology — Radio frequency identification (RFID) for item management — Software system infrastructure — Part 5: Device interface |
| ISO/IEC TR 19791:2010 | Information technology Security techniques Security assessment of operational systems |
| ISO/IEC 9899:2011 | Information technology Programming languages C |
| ISO/IEC 646:1991 | Information technology ISO 7-bit coded character set for information interchange |
| FIPS PUB 186 : 0 | DIGITAL SIGNATURE STANDARD (DSS) |
| ISO/IEC 24759:2017 | Information technology Security techniques Test requirements for cryptographic modules |
| ISO/IEC 8824-1:2015 | Information technology Abstract Syntax Notation One (ASN.1): Specification of basic notation Part 1: |
| ISO/IEC/IEEE 9945:2009 | Information technology — Portable Operating System Interface (POSIX®) Base Specifications, Issue 7 |
| ISO/IEC 29192-1:2012 | Information technology — Security techniques — Lightweight cryptography — Part 1: General |
| ISO/IEC 24728:2006 | Information technology Automatic identification and data capture techniques MicroPDF417 bar code symbology specification |
| ISO/IEC 9594-1:2017 | Information technology Open Systems Interconnection The Directory Part 1: Overview of concepts, models and services |
| ISO/IEC 15434:2006 | Information technology Automatic identification and data capture techniques Syntax for high-capacity ADC media |
| ISO/IEC 24778:2008 | Information technology — Automatic identification and data capture techniques — Aztec Code bar code symbology specification |
| ISO/IEC 15418:2016 | Information technology Automatic identification and data capture techniques GS1 Application Identifiers and ASC MH10 Data Identifiers and maintenance |
| ISO/IEC 18000-63:2015 | Information technology Radio frequency identification for item management Part 63: Parameters for air interface communications at 860 MHz to 960 MHz Type C |
| ISO/IEC 15438:2015 | Information technology Automatic identification and data capture techniques PDF417 bar code symbology specification |
| ISO/IEC 18000-3:2010 | Information technology — Radio frequency identification for item management — Part 3: Parameters for air interface communications at 13,56 MHz |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.