|
US$1359.00 ยท In stock
Delivery: <= 8 days. True-PDF full-copy in English will be manually translated and delivered via email.
GB/T 42572-2023: Information security technology - Trusted execution environment service specification
Status: Valid
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| GB/T 42572-2023 | English | 1359 |
Add to Cart
|
8 days [Need to translate]
|
Information security technology - Trusted execution environment service specification
| Valid |
GB/T 42572-2023
|
PDF similar to GB/T 42572-2023
Basic data | Standard ID | GB/T 42572-2023 (GB/T42572-2023) | | Description (Translated English) | Information security technology - Trusted execution environment service specification | | Sector / Industry | National Standard (Recommended) | | Classification of Chinese Standard | L80 | | Classification of International Standard | 35.030 | | Word Count Estimation | 67,611 | | Date of Issue | 2023-05-23 | | Date of Implementation | 2023-12-01 | | Issuing agency(ies) | State Administration for Market Regulation, China National Standardization Administration | GB/T 42572-2023: Information security technology - Trusted execution environment service specification
---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
ICS 35:030
CCSL80
National Standards of People's Republic of China
Information Security Technology Trusted Execution Environment Service Specification
service specification
2023-12-01 Implementation
State Administration for Market Regulation
Released by the National Standardization Management Committee
table of contents
Preface III
1 Scope 1
2 Normative references 1
3 Terms and Definitions 1
4 Abbreviations 2
5 General description 2
5:1 Overview 2
5:2 TEE Service Type 2
5:3 Life cycle 4
6 General security requirements for TEE services 5
6:1 Technical framework 5
6:2 Key Management 6
6:3 Service initialization 7
6:4 Safe storage 8
6:5 Access Control 8
6:6 Safety input and output 8
6:7 Application Authentication 8
6:8 Communication requirements 8
7 Specific TEE service security requirements 8
7:1 Security requirements for TEE human-computer interaction services 8
7:2 TEE two-dimensional code service security requirements 9
7:3 TEE Equipment Security Status Evaluation Service Security Requirements 10
7:4 TEE identity authentication service security requirements 11
7:5 TEE Time Service Security Requirements 11
7:6 TEE Location Service Security Requirements 11
7:7 TEE cryptographic computing service security requirements 12
8 TEE service general security test evaluation method 12
8:1 Key management 12
8:2 Service initialization 14
8:3 Safe storage 15
8:4 Access Control 16
8:5 Safety input and output 16
8:6 Application Authentication 16
8:7 Communication Requirements 17
9 Specific TEE service security test evaluation method 17
9:1 TEE human-computer interaction service 17
9:2 TEE QR code service 19
9:3 TEE Equipment Safety Status Evaluation Service 20
9:4 TEE authentication service 22
9:5 TEE time service 23
9:6 TEE Location Services 24
9:7 TEE cryptographic computing service 24
Appendix A (informative) TEE Equipment Safety Status Evaluation Service Collection Factor Example 26
Appendix B (Informative) Service Interface 27
Appendix C (Informative) TEE Service Business Process 44
foreword
This document is in accordance with the provisions of GB/T 1:1-2020 "Guidelines for Standardization Work Part 1: Structure and Drafting Rules for Standardization Documents"
drafting:
Please note that some contents of this document may refer to patents: The issuing agency of this document assumes no responsibility for identifying patents:
This document is proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260):
This document is drafted by: China UnionPay Co:, Ltd:, University of Chinese Academy of Sciences, Fudan University, Huawei Technologies Co:, Ltd:, Bank of Beijing
Lianjinka Technology Co:, Ltd:, Shenzhen Huada Beidou Technology Co:, Ltd:, CICC Financial Certification Center Co:, Ltd:, Beijing Qianchuan Technology Co:, Ltd:
Co:, Ltd:, Shanghai Molian Information Technology Co:, Ltd:, Beijing Xiaomi Mobile Software Co:, Ltd:, OPPO Guangdong Mobile Communication Co:, Ltd:,
Shenzhen Tencent Computer System Co:, Ltd:, Ant Technology Group Co:, Ltd:, Zhengzhou Xinda Jiean Information Technology Co:, Ltd:,
Hengbao Co:, Ltd:, Yuncong Technology Group Co:, Ltd:, Beijing Chuangyuan Tiandi Technology Co:, Ltd:, Datang Gaohong Xin'an (Zhejiang) Xin
Information Technology Co:, Ltd:, Shanghai Juhong Optoelectronics Technology Co:, Ltd:, Tongdun Technology Co:, Ltd:
The main drafters of this document: Chai Hongfeng, Sun Quan, Chen Chengqian, Wang Yuewu, Wu Jie, Li Xiaowei, Sun Zhongliang, Hu Ying, Zou Fen, Zhang Youju, Zhou Quan,
Lei Lingguang, Ye Jiawei, Wang Xin, Chi Haizhang, Wang Sishan, Lu Xin, Meng Qingyang, Xu Gang, Zhou Bo, Zhang Zhongqun, Wang Lei, Li Gen, Jiang Zengzeng, Lin Guanchen,
Liu Weihua, Zhao Liming, Li Jun, Xiao Qinghai, Zheng Chi, Li Jiayang, Tan Cheng:
Information Security Technology Trusted Execution Environment Service Specification
1 Scope
This document establishes a technical framework system for trusted execution environment services, and specifies relevant security technical requirements and testing and evaluation methods:
This document is applicable to the design, development, testing, etc: of trusted execution environment services, equipment manufacturers, system software providers, testing agencies and
Participants in credible execution environment services such as scientific research institutions can refer to it:
2 Normative references
The contents of the following documents constitute the essential provisions of this document through normative references in the text: Among them, dated references
For documents, only the version corresponding to the date is applicable to this document; for undated reference documents, the latest version (including all amendments) is applicable to
this document:
GB/T 17901:1-2020 Information Technology Security Technology Key Management Part 1: Framework
GB/T 25069-2022 Information Security Technical Terminology
GB/T 41388-2022 Information Security Technology Trusted Execution Environment Basic Security Specifications
3 Terms and Definitions
The following terms and definitions defined in GB/T 25069-2022 and GB/T 41388-2022 apply to this document:
3:1
Based on hardware-level isolation and secure boot mechanism, in order to ensure the confidentiality, integrity, and authenticity of security-sensitive application-related data and codes
A software operating environment built with the goal of non-repudiation:
Note: Hardware-level isolation refers to the hardware-based security extension mechanism, through the fixed division or dynamic sharing of computing resources, to ensure that isolated resources are not blocked by the rich execution environment:
A security mechanism for environment access:
[Source: GB/T 41388-2022, 3:3]
3:2
A software operating environment that provides basic functions and computing resources for applications:
Note: The rich execution environment is an operating environment that exists independently of the trusted execution environment:
[Source: GB/T 41388-2022, 3:4]
3:3
A software program that runs in a trusted execution environment and provides basic, general, and public functions for REE:
Note: This document is referred to as "TEE service":
3:4
A software program that runs in a trusted execution environment and provides an information interaction interface:
Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 42572-2023_English be delivered?Answer: Upon your order, we will start to translate GB/T 42572-2023_English as soon as possible, and keep you informed of the progress. The lead time is typically 5 ~ 8 working days. The lengthier the document the longer the lead time. Question 2: Can I share the purchased PDF of GB/T 42572-2023_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 42572-2023_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet. Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.
|