ISO/IEC INTERNATIONAL STANDARD 10181-6 First edition 1996-09-15 Information technology -- Open Systems Interconnection - Security frameworks for open systems: Integrity framework Technologies de I'information -- Interconnexion de systemes ouverts (Osl) -- Cadres généraux pour la sécurité des systemes ouverts: Cadre general d'integrite IEC so Reference number ISO/IEC 10181-6:1996(E) ISO/IEC 10181-6:1996(E) Contents Page 1 1 Scope. 2 2 Normative references...... 2 2.1 Identical Recommendations I International Standards Paired Recommendations I International Standards equivalent in technical conten 2 2.2 2. 2.3 Additional References. 2 3 Definitions. Abbreviations...... 4 4 4 5 General discussion of integrity.... 5 5.1 Basic concepts.... 5 5.2 Types of integrity services . 5 5.3 Types of integrity mechanisms.... Threats to integ.rity.... 6 5.4 5.5 6 7 Integrity policies... 6 7 6.1 Policy expression .... 7 6.1.1 Data characterization.... Entity characterization ... 7 6.1.2 7 6.1.2.1 Identity based policies. Rule based policies . 7 6.1.2.2 7 7 Integrity information and facilities.... 7 7.1 Integrity information.... 7.1.1 Shield integrity information. 8 7.1.2 Modification detection integrity information.... 8 8 7.1.3 Unshield integrity information..... 8 7.2 Integrity facilities .... 7.2.1 Operational related facilities 8 7.2.2 6 Classification of integrity mechanisms . 9 8 9 8.1 Integrity provision through cryptography.. 8.1.1 Integrity provision through sealing.. 9 9 8.1.2 Integrity provision through Digital Signatures 10 8.1.3 Integrity provision through encipherment of redundant data.... 10 8.2 Integrity provision through context .. 10 8.2.1 Dala Replication........ 8.2.2 11 Pre-agreed context . 11 8.3 Integrity provision through detection and acknowledgement. 8.4 Integrity provision through prevention .. 11 @ ISO/IEC 1996 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from the publisher. ISO/IEC Copyright Office· Case postale 56· CH-1211 Geneve 20·Switzerland Printed in Switzerland ISO/IEC 10181-6:1996(E) ISO/IEC 9 Interactions with other security services and mechanisms. 11 9.1 11 9.2 Data origin authentication.... 12 9.3 Confidentiality..... 12 Annex A -- Integrity in the OSI Basic Reference Model.. 13 Annex B - External Data Consistency ... 15 Annex C-Integrity Facilities Outline ... 17