LDT30.2-2009 English PDF
Basic dataStandard ID: LD/T 30.2-2009 (LD/T30.2-2009)Description (Translated English): Human resources and social security electronic authentication system. Part 2: Technology specification of electronic authentication system Sector / Industry: Chinese Industry Standard (Recommended) Classification of Chinese Standard: L80 Classification of International Standard: 35.040 Word Count Estimation: 23,248 Date of Issue: 2009-12-14 Date of Implementation: 2010-03-01 Quoted Standard: GB/T 19771-2005; GM 0001-2005; Information technology - Security techniques password terminology (State Encryption Administration); digital certificate authentication system cryptographic protocol specification (State Encryption Administration) Regulation (derived from): ?Industry Standard Filing Announcement 2010 No.2 (Total No.122) Issuing agency(ies): Ministry of Human Resources and Social Security Summary: This standard specifies the Human Resources and Social Security of electronic authentication system architecture and system configuration. This standard defines the structure and basic functions of electronic authentication system for each unit. Provides basic safety precautions electronic authentication system. Standardize business processes and related electronic authentication protocol. This section applies to the guidance of human resources and social security department building electronic authentication system based on PKI technology. Contribute to human resources and social security departments at all levels to establish suitable human resources and social security, the development of e- business systems certification system. LDT30.2-2009: Human resources and social security electronic authentication system. Part 2: Technology specification of electronic authentication system---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order. Human resources and social security electronic authentication system.Part 2. Technology specification of electronic authentication system ICS 35.040 L80 Record number. 27109-2010 People's Republic of China labor and labor safety industry standards Human Resource and Social Security Electronic Certification System Part 2. Technical specifications for electronic authentication systems 2009-12-14 release 2010-03-01 Implementation Issued by the Ministry of Human Resources and Social Security of the People's Republic of China Directory Preface I 1 Scope 1 2 normative reference document 1 3 Terms and definitions 1 4 acronym 2 Layout and structure of electronic authentication system 5.1 Overall layout 3 5.2 Composition of electronic authentication system 4 Certificate Certification Facilities 4 6.1 Certificate issuance management system 4 6.2 certificate registration management system 6 6.3 certificate inspection service system 7 7 Password Management Facility 8 7.1 key management system 8 7.2 Password Service System 11 8 basic safety protection facilities8.1 Antivirus system 8.2 Firewall 12 8.3 vulnerability scanning 12 8.4 Intrusion Detection 12 Business Processes and Agreements 9.1 Certificate Management Process 12 9.2 Certificate Verification Protocol 16 Appendix A (informative) Provincial electronic certification system (model one) Network structure diagram 18 Appendix B (informative) Provincial electronic certification system (mode two) Network structure diagram 19ForewordIn order to meet the human resources and social security information development requirements, to meet the human resources and social security network trust system construction and management The Ministry of Human Resources and Social Security organized and developed LD/T 30-2009 "Human Resource and Social Security Electronic Certification System". The network trust system includes the electronic authentication system, the authorization management system and the responsibility identification system. This standard mainly describes the human resources and society Will guarantee the electronic certification system related content, including the following five parts. - Part 1. Framework specification; - Part 2. Technical specifications for electronic certification systems; - Part 3. Certificate and certificate revocation list format specification; - Part 4. Certificate application management specification; Part 5. Certificate carrier specification. This part is Part 2 of LD/T 30-2009. This section describes the architecture, system composition, and system functions of the human resources and social security electronic certification system. Resources and social security departments to build electronic certification system of technical specifications and basic requirements. This section focuses on the "certificate authentication system password and its associated security technical specifications", and on this basis, the expansion of the certificate management flow Process, the provincial system construction topology and other related content, from the human resources to meet the needs of social security business point of view, the construction of the industry's electronics The certification system presents specifications and requirements. This part of the People's Republic of China Human Resources and Social Security Information Center and put forward. This part of the main drafting unit. the People's Republic of China Human Resources and Social Security Information Center, Shanghai Human Resources and Social Security Bureau information center, Beijing digital certificate certification center, Wei Hao Information Technology Co., Ltd. The main drafters of this part are. Zhao Ximing, Dai Ruimin, Jia Huabin, Zhai Yanyi, Li Lihong, Wu Zhibin, Huang Yong, Lu Lijuan, Xu Huaguang, Zhang Jiahui, Jin Zhaohui, Lu Chunsheng, Li Yongliang, Song Jingyan, Du Shouguo, Ouyang Jin, Lin Xueyan, Li Shusheng, Gu Qing, Song Cheng. This part of the relevant information related to the password, according to the relevant state regulations. Human Resource and Social Security Electronic Certification System Part 2. Technical specifications for electronic authentication systems1 ScopeLD/T 30 This section describes the human resources and social security electronic certification system architecture, system structure, the definition of electronic recognition The structure and basic functions of each unit of the system are defined, and the basic safety protection measures of the electronic authentication system are specified, which standardizes the electronic authentication business process And related agreements. This section applies to the guidance of human resources and social security departments to build electronic certification system based on PKI technology, contribute to all levels of manpower The resource and social security sector establishes an electronic certification system for the development of the human resources and social security business system.2 normative reference documentsThe following documents are indispensable for the application of this document. For dated references, only the dated edition applies to this article Pieces. For undated references, the latest edition (including all modifications) applies to this document. GB/T 19771-2005 Information technology Security technology Public key infrastructure PKI component Minimum interoperability specification Certificate of authentication system and its related safety technical specification Information Technology Security Technology Password Terminology (National Password Authority) Digital Certificate Authentication System Password Protocol Specification (National Password Authority)3 terms and definitionsThe following terms and definitions apply to this section. 3.1 CA Responsible for the creation and distribution of certificates, trusted by the authority of the user. The user can select the institution to create a key for it. 3.2 The public key owner information, the public key, the issuer information, the validity period, and the one that are digitally signed by the authoritative certification authority Some of the extended information of the digital file. 3.3 By a certificate authority to another certificate certification body issued by the digital certificate, a certificate certification body can also sign for their own Made a digital certificate, which is a self-signed digital certificate. 3.4 Certificate certification system certificateauthenticationsystem A security system that manages the entire process of digital certificates within the lifecycle. ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of LDT30.2-2009_English be delivered?Answer: Upon your order, we will start to translate LDT30.2-2009_English as soon as possible, and keep you informed of the progress. The lead time is typically in 9 seconds (download/delivered in 9 seconds). The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of LDT30.2-2009_English with my colleagues?Answer: Yes. The purchased PDF of LDT30.2-2009_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |