Quyết định 59/2008/QĐ-BTTTT về Danh mục tiêu chuẩn bắt buộc áp dụng về chữ ký số và dịch vụ chứng thực chữ ký số do Bộ trưởng Bộ Thông tin và Truyền thông ban hành

THE MINISTRY OF INFORMATION AND COMMUNICATIONS
-------

SOCIALIST REPUBLIC OF VIETNAM
Independence – Freedom – Happiness
---------

No.: 59/2008/QD-BTTTT

Hanoi, December 31, 2008

 

DECISION

PROMULGATING THE LIST OF APPLICABLE FORCED STANDARD ON DIGITAL SIGNATURES AND SERVICES TO CERTIFY DIGITAL SIGNATURES

THE MINISTER OF INFORMATION AND COMMUNICATIONS

Pursuant to the Law on E-Transaction dated November 29, 2005;Pursuant to the Decree No.26/2007/ND-CP dated February 15, 2007 of the Government detailing the implementation of the Law on E-Transaction on digital signatures and services to certify digital signatures;Pursuant to the Decree No.187/2007/ND-CP dated December 25, 2007 of the Government defining the functions, tasks, powers and organizational structure of the Ministry of Information and Communications;At the proposal of Deputy Minister of the Department of Science and Technology and Director of State Agency for Technology Innovation,

DECIDES:

Article 1. Issuing together this Decision is “the List of applicable forced standard on digital signatures and services to certify digital signatures”.

Article 2. Organizations providing the national digital signature certification services; Organizations providing the public digital signature certification services; Organizations providing the used exclusively digital signature certification services granted certificates of sufficient condition to ensure security for digital signatures by the Ministry of Information and Communications; Organizations providing the foreign digital signature certification services recognized by the Government of Vietnam must comply with the standards in the list of standards promulgated by Decision.

Article 3. This standard List is considered periodically to upgrade, amend, supplement to suit to the actual conditions of Vietnam.

Article 4. This Decision takes effect 15 (fifteen) days after its publication in the Official Gazette.

Article 5. Chief Office, Deputy Minister of the Department of Science and Technology, Director of the State Agency for Technology Innovation, the heads of agencies and units under the ministries, the relative organizations and individuals are responsible for the implementation of this Decision./.

 

 

 

FOR THE MINISTER
DEPUTY MINISTER




Nguyen Thi Minh Hong

 

THE LIST

APPLICABLE FORCED STANDARD ON DIGITAL SIGNATURES AND SERVICES TO CERTIFY DIGITAL SIGNATURES(Issuing together with the Decision No.59/2008/QD-BTTTT dated December 31, 2008 of the Ministry of Information and Communications)

No.

Type of standard

Standard signs

Full name of standards

Applicable provisions

1

Secret standard to HSM

Secret standard to HSM

Secret standard to HSM

Secret standard to HSM

1.1

Keeping secret for hardware security block HSM

FIPS PUB 140-2

Security Requirements for Cryptographic Modules

Minimum requirement level 3

 

 

 

2

Encrypt standard

Encrypt standard

Encrypt standard

Encrypt standard

2.1

Un-symmetric encryption and digital signatures

PKCS #1

RSA Cryptography Standard

- Version 2.1

- Applying the diagram RSAES-OAEP to encrypt and RSASSA-PSS to sign

 

 

 

2.2

symmetric encryption

FIPS PUB 197

Advanced Encryption Standard (AES)

Applying AES or 3DES

 

 

 

 

 

FIPS PUB 46-3

Data Encryption Standard (DES)

 

 

 

 

2.3

Secured hash 

FIPS PUB 180-2

Secure Hash Standard

Applying one of four secure hashes: SHA-1, SHA-256, SHA-384, SHA-512

 

 

 

3

Standard to create requirement and exchange digital Certificates

Standard to create requirement and exchange digital Certificates

Standard to create requirement and exchange digital Certificates

Standard to create requirement and exchange digital Certificates

3.1

Format digital Certificates and list of withdrawing digital Certificates

RFC 3280

Internet X.509 Public Key Infrastructure - Certificate and Certificate Revocation List (CRL) Profile

 

 

 

 

3.2

Cryptographic Message Syntax

PKCS #7

Cryptographic Message Syntax Standard

Version 1.5

 

 

 

3.3

Private-Key Information Syntax

PKCS #8

Private-Key Information Syntax Standard

Version 1.2

 

 

 

3.4

Certification Request Syntax

PCKS #10

Certification Request Syntax Standard

Version 1.7

 

 

 

3.5

Personal Information Exchange Syntax

PKCS #12

Personal Information Exchange Syntax Standard

Version 1.0

 

 

 

4

Standard on policy and practices of digital signature certification

Standard on policy and practices of digital signature certification

Standard on policy and practices of digital signature certification

Standard on policy and practices of digital signature certification

4.1

Certification Practices Framework and Certificate Policy

RFC 3647

Internet X.509 Public Key Infrastructure - Certificate Policy and Certification Practices Framework

 

 

 

 

5

Standard on storage and access of digital Certificates

Standard on storage and access of digital Certificates

Standard on storage and access of digital Certificates

Standard on storage and access of digital Certificates

5.1

Storage Protocols and retrieving of digital Certificates

RFC 2587

Internet X.509 Public Key Infrastructure LDAPv2 Schema

Applying RFC 2587 or RFC 4523

 

 

 

 

 

RFC 4523

Lightweight Directory Access Protocol (LDAP) Schema Definitions for X.509 Certificates

 

 

 

 

 

 

RFC 2251

Lightweight Directory Access Protocol (v3)

Applying RFC 2251 or set of four standards RFC 4510, RFC 4511, RFC 4512, RFC 4513

 

 

 

 

 

 

RFC 4510

Lightweight Directory Access Protocol (LDAP): Technical Specification Road Map

 

 

 

 

 

 

RFC 4511

Lightweight Directory Access Protocol (LDAP): The Protocol 

 

 

 

 

 

 

RFC 4512

Lightweight Directory Access Protocol (LDAP): Directory Information Models

 

 

 

 

 

 

RFC 4513

Lightweight Directory Access Protocol (LDAP): Authentication Methods and Security Mechanisms

 

 

 

 

6

Standard on inspection of state of digital Certificates

Standard on inspection of state of digital Certificates

Standard on inspection of state of digital Certificates

Standard on inspection of state of digital Certificates

6.1

Protocols for inspection of state of digital Certificates

RFC 2585

Internet X.509 Public Key Infrastructure - Operational Protocols: FTP and HTTP

Applying to one or two Protocols FTP and HTTP

 

 

 

 

 

---------------

This document is handled by Dữ Liệu Pháp Luật . Document reference purposes only. Any comments, please send to email: [email protected]

Văn bản gốc đang được cập nhật.

Được hướng dẫn () Xem thêm

Bị hủy bỏ () Xem thêm

Được bổ sung () Xem thêm

Đình chỉ () Xem thêm

Bị đình chỉ () Xem thêm

Bị đinh chỉ 1 phần () Xem thêm

Bị quy định hết hiệu lực () Xem thêm

Bị bãi bỏ () Xem thêm

Được sửa đổi () Xem thêm

Được đính chính () Xem thêm

Bị thay thế () Xem thêm

Được điều chỉnh () Xem thêm

Được dẫn chiếu () Xem thêm

Văn bản hiện tại

Số hiệu 59/2008/QĐ-BTTTT
Loại văn bản Quyết định
Cơ quan Bộ Thông tin và Truyền thông
Ngày ban hành 31/12/2008
Người ký Nguyễn Minh Hồng
Ngày hiệu lực 05/02/2009
Tình trạng Hết hiệu lực

Hướng dẫn () Xem thêm

Hủy bỏ () Xem thêm

Bổ sung () Xem thêm

Đình chỉ 1 phần () Xem thêm

Quy định hết hiệu lực () Xem thêm

Bãi bỏ () Xem thêm

Sửa đổi () Xem thêm

Đính chính () Xem thêm

Thay thế () Xem thêm

Điều chỉnh () Xem thêm

Dẫn chiếu () Xem thêm

Văn bản gốc đang được cập nhật
Tải văn bản Tiếng Việt