ISO/IEC 20248:2022
Information technology - Automatic identification and data capture techniques - Digital signature data structure schema
Abstract
ISO/IEC 20248:2022 This document is an ISO/IEC 9594โ8 [public key infrastructure (PKI) digital signatures and certificates] application specification for automated identification services. It specifies a method whereby data stored within a barcode and/or RFID tag are structured, encoded and digitally signed. ISO/IEC 9594โ8 is used to provide a standard method for key and data description management and distribution. The data capacity and/or data transfer capacity of automated identification data carriers are restricted. This restricts the normal use of a digital signature as specified in ISO/IEC 9594โ8 within automated identification services.
The purpose of this document is to provide an open and interoperable method, between automated identification services and data carriers, to read data, verify data originality and data integrity in an offline use case.
This document specifies
- the meta data structure, the DigSig, which contains the digital signature and encoded structured data,
- the public key certificate parameter and extension use, the DigSig certificate, which contains the certified associated public key, the structured data description, the read methods, and private containers,
- the method to specify, read, describe, sign, verify, encode, and decode the structured data, the DigSig Data Description,
- the DigSig EncoderGenerator which generates the relevant asymmetric key pairs, keeps the private key secret, and generates the DigSigs, and
- the DigSig DecoderVerifier which, by using to the DigSig certificate, reads the DigSig from the set of data carriers, verifies the DigSig and extracts the structured data from the DigSig.
This document does not specify
- cryptographic methods, or
- key management methods.
The purpose of this document is to provide an open and interoperable method, between automated identification services and data carriers, to read data, verify data originality and data integrity in an offline use case.
This document specifies
- the meta data structure, the DigSig, which contains the digital signature and encoded structured data,
- the public key certificate parameter and extension use, the DigSig certificate, which contains the certified associated public key, the structured data description, the read methods, and private containers,
- the method to specify, read, describe, sign, verify, encode, and decode the structured data, the DigSig Data Description,
- the DigSig EncoderGenerator which generates the relevant asymmetric key pairs, keeps the private key secret, and generates the DigSigs, and
- the DigSig DecoderVerifier which, by using to the DigSig certificate, reads the DigSig from the set of data carriers, verifies the DigSig and extracts the structured data from the DigSig.
This document does not specify
- cryptographic methods, or
- key management methods.
Additional information
Publication type | International Standard |
---|---|
Publication date | 2022-06-10 |
Edition | 2.0 |
Available language(s) | English |
TC/SC | ISO/IEC JTC 1/SC 31 - Automatic identification and data capture techniquesrss |
ICS | 35.040.50 - Automatic identification and data capture techniques |
Pages | 106 |
File size | 5589 KB |
The following test report forms are related:
Share your publications
Learn how to share your publications with your colleagues, using networking options.
Payment information
Our prices are in Swiss francs (CHF). We accept all major credit cards (American Express, Mastercard and Visa, JCB and CUP), PayPal and bank transfers as form of payment.
Keep in touch
Keep up to date with new publication releases and announcements with our free IEC Just Published email newsletter.
Contact customer services
Please send your enquiry by email or call us on +41 22 919 02 11 between 09:00 – 16:00 CET Monday to Friday.