GB/Z 24294.3-2017 Information security technology.Guide of implementation for Internet-based e-government information security.Part 3:Identity authentication and authorization (English Version)
This part of GB/Z 24294 gives the implementation guidelines for identity authentication and authorization management in Internet e-government, clarifies its functional requirements and installation and deployment requirements, and defines the technical specifications for identity authentication and authorization management. With the goal of building a trusted government service platform based on the Internet, it provides technical guidance for the establishment of a credible, manageable, and controllable Internet-based e-government information system. This part applies to the design, development and construction of identity authentication and authorization management systems based on Internet e-government systems, and provides management and technical reference for managers, engineering technicians, and information security product providers to build a unified identity authentication and authorization management system. If it involves state secrets, or the aggregated information stored, processed, and transmitted may involve state secrets, it shall be implemented in accordance with state secrecy regulations and standards.
GB/Z 24294.3-2017 Referenced Document
GM/T 0015-2012 Digital certificate format based on SM2 algorithm
GB/Z 24294.3-2017 history
2018GB/Z 24294.1-2018 Information security technology—Guide of implementation for internet-basede-government information security—Part 1:General
2009GB/Z 24294-2009 Information security technology.Guide of implementation for internet-based E-government inoformation security