ISO/IEC INTERNATIONAL STANDARD 20009-4 First edition 2017-08 Information technology Security techniques Anonymous entity authentication - Part 4: Mechanisms based on weak secrets Technologies de I'information - Techniques de sécurité Authentification d'entite anonyme- Partie 4: Mecanismes basés sur des secrets faibles Reference number TEC IS0/IEC 20009-4:2017(E) @IS0/IEC2017 out license from IHS IS0/IEC 20009-4:2017(E) COPYRIGHTPROTECTEDDOCUMENT IS0/IEC 2017, Published in Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO's member body in the country of the requester. ISO copyright office Ch. de Blandonnet 8 . CP 401 CH-1214 Vernier, Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22 749 09 47 [email protected] www.iso.org @ IS0/IEC 2017 - All rights reserved Univ/5926867100, User=JACKEY, MA networking permited without license from IHS IS0/IEC 20009-4:2017(E) Contents Page Foreword ..iv Introduction. ..V 1 Scope. ..1 2 Normative references 3 Terms and definitions 4 Symbols, abbreviated terms and conversion functions 4.1 Symbols and abbreviated terms. .4 4.2 Conversionfunctions .7 General model for password-based anonymous entity authentication .7 5.1 Participants .7 5.2 Types of PAEA mechanisms.. 5.3 Components of a password-only PAEA .7 5.4 Components of a storage-extra PAEA. ..8 5.5 Operation of a PAEA. .8 6 Password-only PAEA mechanisms. .9 6.1 General ..9 6.2 SKI mechanism .9 6.2.1 Setup. .9 6.2.2 User registration ..10 6.2.3 Anonymous authentication .10 6.2.4 User revocation .12 6.3 YZ mechanism. .12 6.3.1 Setup.... 6.3.2 User registration ..12 6.3.3 Anonymous authentication ..13 6.3.4 User revocation .14 Storage-extra PAEA mechanism ..14 7.1 General. 14 7.2 YzW mechanism .14 7.2.1 General. ..14 7.2.2 Setup. ..15 7.2.3 User registration .15 7.2.4 Anonymous authentication ..16 7.2.5 User revocation. 17 Annex A (normative) Object identifiers .19 Bibliography .20 opyrntntematonalEAll rights reserved iii mited without license from IHS Not for Resale, ACKEY, MA