This standard: 1) Determines the objectives of key management; 2) Describes the general model as the basis of key management mechanisms; 3) Defines the basic concepts of key management common to all parts of GB/T 17901; 4) Defines key management services ; 5) Determine the characteristics of the key management mechanism; 6) Specify the requirements for managing key material during its lifetime; 7) Describe the framework for managing key material during its lifetime. This framework defines a general model of key management that is not related to the use of any particular cryptographic algorithm, although certain key distribution mechanisms may be related to specified algorithmic properties (such as those of asymmetric algorithms). The specific key management mechanism is described in other parts of this series of standards. Among them, the second part expounds the symmetrical system, and the third part expounds the asymmetrical system. The content of this standard is the basis for understanding Parts 2 and 3. Examples of the use of key management mechanisms are found in ISO 8732 and ISO 11166. If non-repudiation function is required for key management, GB/T 17903 should be adopted. This standard describes both automatic and manual key management, including an overview of the data elements and sequence of operations used to obtain key management services, but does not specify details of protocol exchanges that may be required. Like other security services, key management services can only be provided within a defined security policy. The definition of security policy is beyond the scope of GB/T 17901.
GB/T 17901.1-1999 history
2020GB/T 17901.1-2020 Information technology—Security techniques—Key management—Part 1: Framework
1999GB/T 17901.1-1999 Information technology-Security techniques-Key management-Part 1: Framework