|
US$909.00 · In stock
Delivery: <= 6 days. True-PDF full-copy in English will be manually translated and delivered via email.
GM/T 0024-2023: (SSL VPN technical specifications)
Status: Valid GM/T 0024: Evolution and historical versions
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| GM/T 0024-2023 | English | 909 |
Add to Cart
|
6 days [Need to translate]
|
(SSL VPN technical specifications)
| Valid |
GM/T 0024-2023
|
| GM/T 0024-2014 | English | 490 |
Add to Cart
|
0--9 seconds. Auto-delivery
|
SSL VPN specification
| Obsolete |
GM/T 0024-2014
|
Standard similar to GM/T 0024-2023 GM/T 0015 GM/T 0016 GM/T 0014 Basic data | Standard ID | GM/T 0024-2023 (GM/T0024-2023) | | Description (Translated English) | (SSL VPN technical specifications) | | Sector / Industry | Chinese Industry Standard (Recommended) | | Word Count Estimation | 41,481 | | Date of Issue | 2023-12-04 | | Date of Implementation | 2024-06-01 | | Issuing agency(ies) | State Administration of Cryptography | GM/T 0024-2014: SSL VPN specification---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
SSL VPN specification
ICS 35.040
L80
Record number. 44625-2014
People's Republic of China Password Industry Standard
SSLVPN technical specifications
Released on.2014-02-13
2014-02-13 Implementation
Issued by the National Cryptography Administration
Table of contents
Foreword Ⅰ
Introduction Ⅱ
1 Scope 1
2 Normative references 1
3 Terms and definitions 1
4 Symbols and abbreviations 2
5 Cryptographic algorithm and key type 3
5.1 Cryptographic Algorithm 3
5.2 Key type 4
6 Protocol 4
6.1 Overview 4
6.2 Data type definition 4
6.3 Record layer protocol 5
6.4 Handshake protocol family 9
6.5 Key calculation 21
6.6 Gateway to Gateway Protocol 22
7 Product requirements 24
7.1 Product functional requirements 24
7.2 Product performance parameters 25
7.3 Safety management requirements 26
8 Product testing 27
8.1 Product function test 27
8.2 Product performance testing 28
8.3 Safety management testing 28
9 Qualified judgment 29
Reference 30
Foreword
This standard was drafted in accordance with the rules given in GB/T 1.1-2009.
Please note that certain contents of this document may involve patents. The issuing agency of this document is not responsible for identifying these patents.
This standard was proposed and managed by the Cryptographic Industry Standardization Technical Committee.
The main drafters of this standard. Shanghai Geer Software Co., Ltd., Huawei Technologies Co., Ltd., Shenzhen Shenxinfu Electronic Technology Co., Ltd.
Co., Ltd., Shenzhen Aolian Technology Co., Ltd., Wangyu Shenzhou Technology (Beijing) Co., Ltd., Chengdu Weishitong Information Industry Co., Ltd.,
Beijing Oriental Huadun Information Technology Co., Ltd., China International Electronic Commerce Co., Ltd., Lenovo Wangyu Technology (Beijing) Co., Ltd., Shanghai An
Datong Information Security Co., Ltd., Wuxi Jiangnan Information Security Engineering Technology Center, Beijing Tianrongxin Network Security Technology Co., Ltd.
The main drafters of this standard. Liu Ping, Tan Wuzheng, Huang Min, Zeng Jianfa, Dan Bo, Liu Jianfeng, Luo Jun, Li Zhichao, Li Feibo, He Zhiyu, Chen Kai,
Zhu Zhengchao, Ni Yongnian, Han Lin.
Introduction
The protocol content of this standard refers to the transport layer security protocol (RFC4346TLS1.1), in accordance with my country's relevant cryptographic policies and regulations, combined with
The actual application needs of my country and the practical experience of product manufacturers have added ECC and IBC certification modes to the handshake protocol of TLS1.1
And the key exchange mode, cancel the DH key exchange mode, modify the definition of cipher suite. In addition, a gateway is added to this standard-
Gateway protocol.
SSLVPN technical specifications
1 Scope
This standard specifies the technical protocol, product functions, performance, management and testing of SSLVPN.
This standard applies to the development of SSLVPN products, and can also be used to guide the detection, management and use of SSLVPN products.
2 Normative references
The following documents are indispensable for the application of this document. For dated reference documents, only the dated version applies to this article
For all undated references, the latest version (including all amendments) applies to this document.
GM/T 0005 Randomness Testing Specification
GM/T 0009 SM2 cryptographic algorithm usage specification
GM/T 0010 SM2 cryptographic algorithm encryption signature message syntax specification
GM/T 0014 Digital Certificate Authentication System Password Protocol Specification
GM/T 0015 Digital certificate format specification based on SM2 cryptographic algorithm
3 Terms and definitions
The following terms and definitions apply to this document.
3.1
Digital certificate digitalcertificate
Also known as a public key certificate, it is signed by a certificate authority (CA) and contains public key owner information, public key, issuer information, and
A data structure for expiration and extended information. According to the category, it can be divided into personal certificate, institution certificate and equipment certificate, and it can be divided into signature according to purpose
Certificates and encryption certificates.
3.2
IBC algorithm identitybasedcryptography algorithm
The IBC algorithm is also known as the identification cryptographic algorithm. It is a non-identical type that can use any identifier as the public key without using a digital certificate to prove the public key.
Symmetric cryptographic algorithm.
3.3
IBC identity IBCidentity
The IBC logo is a character string representing the identity or attributes of an entity.
3.4
IBC public parameter IBCpublicparameter
IBC public parameters include the name of the IBC key management center, calculation curve, identification encoding method and key generation algorithm and other public parameters.
Number information, which is used to convert entity identification into a public key.
3.5
Initialization vector/initializationvalue; IV
In cryptographic conversion, to increase security or to synchronize cryptographic equipment, it is introduced as the starting data for data conversion.
Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GM/T 0024-2023_English be delivered?Answer: Upon your order, we will start to translate GM/T 0024-2023_English as soon as possible, and keep you informed of the progress. The lead time is typically 4 ~ 6 working days. The lengthier the document the longer the lead time. Question 2: Can I share the purchased PDF of GM/T 0024-2023_English with my colleagues?Answer: Yes. The purchased PDF of GM/T 0024-2023_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet. Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. Question 5: Should I purchase the latest version GM/T 0024-2023?Answer: Yes. Unless special scenarios such as technical constraints or academic study, you should always prioritize to purchase the latest version GM/T 0024-2023 even if the enforcement date is in future. Complying with the latest version means that, by default, it also complies with all the earlier versions, technically.
|