GM/T 0047-2016 PDF in English
GM/T 0047-2016 (GM/T0047-2016, GMT 0047-2016, GMT0047-2016)
Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Name of Chinese Standard | Status |
GM/T 0047-2016 | English | 150 |
Add to Cart
|
0-9 seconds. Auto-delivery.
|
Cryptography test specification for secure electronic seal
| Valid |
Standards related to (historical): GM/T 0047-2016
PDF Preview
GM/T 0047-2016: PDF in English (GMT 0047-2016) GM/T 0047-2016
GM
CRYPTOGRAPHY INDUSTRY STANDARD
OF THE PEOPLE’S REPUBLIC OF CHINA
ICS 35.040
L 80
File No.. 58552-2017
Cryptography test specification
for secure electronic seal
ISSUED ON. DECEMBER 23, 2016
IMPLEMENTED ON. DECEMBER 23, 2016
Issued by. State Cryptography Administration
Table of Contents
Foreword ... 3
1 Scope .. 4
2 Normative references ... 4
3 Terms and definitions ... 4
4 Abbreviation ... 6
5 Detection content ... 6
6 Detection methods .. 9
7 Requirements for technical document submitted for detection .. 14
8 Qualification determination conditions .. 14
Foreword
This Standard was drafted in accordance with the rules given in GB/T 1.1-2009.
Attention is drawn to the possibility that some of the elements of this Standard
may be the subject of patent rights. The issuing authority shall not be held
responsible for identifying any or all such patent rights.
This Standard was proposed by and shall be under the jurisdiction of Code
Industry Standardization Technical Committee.
Main drafting organizations of this Standard. Beijing Digital Certification Co.,
Ltd., State Cryptography Administration Commercial Cryptography Detection
Center, Xing Tang Communication Technology Co., Ltd., Shanghai Digital
Certificate Certification Center Co., Ltd., Shanghai Geer Software Co., Ltd.,
Guardian Information Industry Co., Ltd.
Main drafters of this Standard. Liu Wei, Li Dawei, Deng Kaiyong, Luo Peng,
Xiao Qiulin, Ma Ailiang, Li Dong, Zhu Yafei, Chen Xi, Han Lin, Yan Xiaqiang,
Zhang Zhouqun, Fu Dapeng.
Cryptography test specification
for secure electronic seal
1 Scope
This Standard specifies the cryptography detection content, detection
requirements, detection methods as well as qualification certification rules for
secure electronic seal.
This Standard is applicable to the detection of system cryptography technology
of secure electronic seal developed according to GM/T 0031-2014.
2 Normative references
The following referenced documents are indispensable for the application of
this document. For dated references, only the edition cited applies. For undated
references, the latest edition of the referenced document (including any
amendments) applies.
GB/T 32905, Information security technology SM3 cryptographic hash
algorithm
GB/T 32918, Information security techniques - Elliptic Curve public - key
cryptography
GM/T 0006, Cryptographic application identifier criterion specification
GM/T 0009, SM2 cryptography algorithm application specification
GM/T 0031-2014, Secure electronic seal cryptography technical
specification
3 Terms and definitions
For the purposes of this document, the following terms and definitions apply.
3.1 electronic document
a document that is formed in digital device and environment, is digitally stored
in carriers such as magnetic tape, magnetic disk, optical disk, is read,
processed and transmitted on communications network via computer or other
include. version number, electronic seal, time information, hash value of original
text, attribute information of original text, electronic seal signer certificate,
signature algorithm identifier.
5.6.4 Detection of electronic stamp maker certificate validity
Electronic seal system shall provide verification function of electronic seal
signer certificate to verify the certificate validity of electronic seal signer. The
verification shall at least contain. verification of certificate trust chain of
electronic seal signer, verification of certificate validity of electronic seal signer,
whether electronic seal signer certificate is revoked, whether key is used
correctly.
5.6.5 Detection of certificate list of electronic seal signer
Electronic seal system shall provide verification function whether electronic seal
signer certificate is in the electronic seal signer certificate list of electronic stamp.
5.6.6 Detection of verification of seal validity
Electronic seal system shall provide verification function of electronic seal
validity. It shall be able to determine seal's validity based on digital certificate
validity of electronic seal signer and time information in electronic seal. It
supports the following determination rules.
a) if the seal time is within digital certificate validity of electronic seal signer
and the certificate is valid, the seal time shall be valid;
b) if the seal time is not within digital certificate validity of electronic seal
signer, the seal time shall be invalid;
c) if the seal time is within digital certificate validity of electronic seal signer,
but the certificate has been revoked before seal signing, the seal time shall
be invalid;
d) if the seal time is within digital certificate validity of electronic seal signer,
but the certificate has been revoked after seal signing, the seal time shall
be valid.
5.6.7 Detection of hash verification of original seal text
Electronic seal system shall provide hash verification of original electronic seal
text. If the original seal text changes or hash value of original text in electronic
seal data changes, it shall cause verification fail.
5.6.8 Detection of verification of electronic stamp validity in seal
When verifying electronic seal, electronic seal system shall provide verification
The detection steps are as follows.
a) input correct electronic stamp data; then use electronic seal system to
verify; should the verification pass, the detection of this step shall pass;
otherwise the detection shall fail;
b) input electronic stamp data of wrong signature value; then use electronic
seal system to verify; should the verification fail, the detection of this step
shall pass; otherwise the detection shall fail;
c) modify the original signature text of correct electronic stamp data; hen use
electronic seal system to verify; should the verification fail, the detection
of this step shall pass; otherwise the detection shall fail.
When the above three steps pass, the detection of this item shall pass;
otherwise the detection shall fail.
6.3.4 Detection of certificate validity verification of electronic stamp
maker
The detection steps are as follows.
a) electronic seal system uses correct certificate trust chain to verify whether
the electronic stamp maker certificate that is within validity, not revoked,
with correct key use is valid; if the verification passes, the detection of this
step shall pass; otherwise the detection shall fail;
b) electronic seal system uses wrong certificate trust chain to verify whether
the electronic stamp maker certificate is valid; if the verification fails, the
detection of this step shall pass; otherwise the detection shall fail;
c) electronic seal system uses electronic stamp of which the time of the
stamp making is outside the validity of the stamp maker certificate to verify
whether the stamp maker certificate is valid; should the verification fail,
the detection of this step shall pass; otherwise the detection shall fail;
d) electronic seal system verifies whether the electronic stamp maker
certificate that has been revoked is valid; should the verification fail, the
detection of this step shall pass; otherwise the detection shall fail;
e) electronic seal system verifies whether the electronic stamp maker
certificate of unsigned key use is valid; should the verification fail, the
detection of this step shall pass; otherwise the detection shall fail.
Should the above five steps pass, the detection of this item shall pass;
otherwise the detection shall fail.
6.3.5 Detection of stamp validity verification
6.5.3 Detection of signature value verification of electronic seal
The detection steps are as follows.
a) input electronic seal data of correct signature value, then use electronic
seal system to verify; should the verification pass, the detection of this
step shall pass; otherwise the detection shall fail;
b) input electronic seal data of wrong signature value, then use electronic
seal system to verify; should the verification fail, the detection of this step
shall pass; otherwise the detection shall fail.
Should the above two steps pass, the detection of this item shall pass;
otherwise the detection shall fail.
6.5.4 Detection of certificate validity verification of electronic seal signer
The detection steps are as follows.
a) electronic seal system uses correct certificate trust chain to verify the
electronic seal signer certificate that is within validity, not revoked, with
correct key use; should the verification pass, the detection of this step
shall pass; otherwise the detection shall fail;
b) electronic seal system uses wrong certificate trust chain to verify the
electronic seal signer certificate; should the verification fail, the detection
of this step...
...... Source: Above contents are excerpted from the PDF -- translated/reviewed by: www.chinesestandard.net / Wayne Zheng et al.
|