GB/T 27928.1-2011
Certificate management for financial services.Part 1:Public key certificates (English Version)
- Standard No.
- GB/T 27928.1-2011
- Language
- Chinese, Available in English version
- Release Date
- 2011
- Published By
- General Administration of Quality Supervision, Inspection and Quarantine of the People‘s Republic of China
- Latest
- GB/T 27928.1-2011
- Scope
- This part of GB/T 27928 defines the financial industry certificate management system for legal persons and natural persons, including: Credentials and certificate content; —Certificate authorization system, including certificates for digital signature and encryption key management; —Certificate generation , distribution, verification and renewal; - Authentication structure and certification path; - Revocation and recovery procedures; - Definition extensions of public key certificates and certificate revocation lists. This standard applies to the management of public key certificates in the financial industry. This part of GB/T 27928 also recommends some useful operating procedures (for example, distribution mechanism, acceptance criteria for submitted documents). The implementation of this part of GB/T 27928 will also be based on business risks and legal requirements. This part of GB/T 27928 does not include the following content: - Protocol messages used between parties in the certificate management process; - Requirements for notaries and time stamps; - Requirements for certificate policies and certification actions; third party requirements; — attribute certificates. While this standard specifies aspects related to the generation of certificates (which may include public key management for encryption keys), it does not address the generation and transmission of encryption keys. Implementers who wish to comply with GB/T 16264.8 can adopt the certificate structure defined by this standard. Implementers wishing to implement a compliant certificate and certificate revocation structure without the X.500-series related header fields may use the ASN.1 structure defined in Appendix A.
GB/T 27928.1-2011 Referenced Document
- GB/T 16262.1 Information technology - Abstract syntax notation one (ASN.1) - Part 1: Specification of basic notation
- GB/T 16262.2-2006 Information technology - Abstract syntax notation one (ASN.1) - Part 2: Information object specification
- GB/T 16262.3 Information technology - Abstract syntax notation one (ASN.1) - Part 3: Constraint specification
- GB/T 16262.4 Information technology - Abstract syntax notation one (ASN.1) - Part 4: Parameterization of ASN.1 specifications
- GB/T 16263.1 Information technology - ASN.1 encoding rules - Part 1: Specification of basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER)
- GB/T 16263.2 Information technology - ASN.1 encoding rules - Part 2: Specification of Packed Encoding Rules (PER)
- GB/T 16264.8 Information technology.Open Systems Interconnection.The Directory.Part 8:Public-key and attribute certificate frameworks
- ISO 15782-2:2001 Banking - Certificate management - Part 2: Certificate extensions
- ISO/IEC 15408 Information security, cybersecurity and privacy protection — Evaluation criteria for IT security — Part 5: Pre-defined packages of security requirements*, 2022-08-09 Update
- ISO/IEC 9594-2 Information technology-Open systems interconnection-Part 2: The Directory: Models*, 2024-04-01 Update
- ISO/IEC 9594-6 Information technology-Open systems interconnection-Part 6: The Directory: Selected attribute types*, 2024-04-01 Update
- ISO/IEC 9834-1:1993 Information technology; Open Systems Interconnection; procedures for the operation of OSI registration authorities: general procedures
GB/T 27928.1-2011 history
- 2011 GB/T 27928.1-2011 Certificate management for financial services.Part 1:Public key certificates
