1. Home
  2. Moldova standards
  3. STM
  4. St ISO IEC 20009-3-2022

ISO IEC 20009-3-2022 PDF

St ISO IEC 20009-3-2022

Name in English:
St ISO IEC 20009-3-2022

Name in Russian:
Ст ISO IEC 20009-3-2022

Description in English:

Original standard ISO IEC 20009-3-2022 in PDF full version. Additional info + preview on request

Description in Russian:
Оригинальный стандарт ISO IEC 20009-3-2022 в PDF полная версия. Дополнительная инфо + превью по запросу
Document status:
Active
Format:
Electronic (PDF)
Delivery time (for English version):
1 business day
Delivery time (for Russian version):
365 business days
SKU:
stiso25263
Choose Document Language:
€25

Full title and description

ISO/IEC 20009-3:2022 — Information security — Anonymous entity authentication — Part 3: Mechanisms based on blind signatures. This part specifies general descriptions and concrete specifications for anonymous entity authentication mechanisms that use blind digital signatures to enable verifiable, unlinkable credentials and privacy-preserving authentication flows.

Abstract

This document provides general descriptions and specifications of anonymous entity authentication mechanisms based on blind digital signatures, including credential issuance, authentication exchanges, and security considerations for parameter selection and deployment. It defines at least one two-pass unilateral authentication mechanism and informative annexes covering object identifiers, conversion functions, group descriptions, special hash-functions and security considerations.

General information

  • Status: Published (International Standard).
  • Publication date: 14 February 2022 (first edition, 2022-02).
  • Publisher: Joint ISO/IEC publication produced under ISO/IEC JTC 1/SC 27 (Information security, cybersecurity and privacy protection).
  • ICS / categories: 35.030 (IT security).
  • Edition / version: Edition 1.0 (2022).
  • Number of pages: 16 pages (ISO/IEC published text).

Scope

Specifies anonymous entity authentication mechanisms that rely on blind digital signature techniques. The standard describes models, domain-parameter and key-generation processes, credential issuance and authentication flows (including a two‑pass unilateral authentication mechanism), and guidance on attributes disclosure and anonymity properties. Informative annexes provide OIDs, conversion functions, group descriptions, special hash-function notes and security considerations.

Key topics and requirements

  • Definition of anonymous entity authentication using blind digital signatures and associated threat/assurance model.
  • Specification of domain-parameter generation and cryptographic key‑generation processes for blind-signature schemes.
  • Credential issuance, single‑use unlinkability and presentation/verification flows (two‑pass unilateral mechanism described).
  • Rules for attribute disclosure during authentication and limits on linkability across sessions.
  • Informative annexes: object identifiers (OIDs), conversion functions, group descriptions, special hash‑functions and detailed security considerations.

Typical use and users

Intended for security architects, cryptographic engineers and implementers building privacy-preserving authentication systems — e.g., anonymous credential systems, anonymous ticketing, privacy-focused federated identity or token issuance platforms — who need standardized blind-signature based mechanisms and interoperability guidance. Standards and compliance teams evaluating privacy/cryptography requirements will also use it.

Related standards

Closely related and cross-referenced standards include: ISO/IEC 20009-1 (Anonymous entity authentication — Part 1: General); ISO/IEC 20009-2 (Part 2: mechanisms based on signatures using a group public key); the ISO/IEC 18370 series on blind digital signatures (foundation for blind-signature mechanisms); and other cryptographic/signature standards referenced for formats and processes.

Keywords

Anonymous authentication, blind signatures, anonymous credentials, unlinkability, privacy-preserving authentication, credential issuance, ISO/IEC JTC 1/SC 27.

FAQ

Q: What is this standard?

A: ISO/IEC 20009-3:2022 is the third part of the ISO/IEC 20009 series; it specifies anonymous entity authentication mechanisms based on blind digital signatures and provides concrete mechanism descriptions and supporting annexes.

Q: What does it cover?

A: It covers models, domain parameters, key generation, credential issuance and authentication exchanges for blind-signature based anonymous authentication, plus informative annexes on OIDs, conversion functions, group descriptions, special hash functions and security guidance.

Q: Who typically uses it?

A: Cryptographic engineers, security architects, implementers of anonymous credential/ticketing systems, and standards/compliance teams assessing privacy-preserving authentication solutions.

Q: Is it current or superseded?

A: This is the first edition published in February 2022 and is listed as published/current by ISO/IEC. Related earlier parts of the 20009 series (Parts 1 and 2) were published in 2013 and remain relevant for the series’ general model and alternate mechanisms.

Q: Is it part of a series?

A: Yes — ISO/IEC 20009 is a multipart series addressing anonymous entity authentication; Part 1 provides general concepts, Part 2 covers group-signature based mechanisms and Part 3 (this document) focuses on blind-signature based mechanisms. It also references the ISO/IEC 18370 blind digital signature series.

Q: What are the key keywords?

A: Anonymous entity authentication, blind digital signatures, unlinkability, anonymous credentials, credential issuance, selective disclosure, ISO/IEC JTC 1/SC 27.