ISO IEC 9796-2-2010 PDF

Full title and description

Information technology — Security techniques — Digital signature schemes giving message recovery — Part 2: Integer factorization based mechanisms (ISO/IEC 9796-2:2010). This international standard specifies RSA-like digital signature schemes that support message recovery, including algorithms, parameter choices and message representative formats for implementations that rely on the hardness of integer factorization.

Abstract

ISO/IEC 9796-2:2010 defines three digital signature schemes that provide message recovery: two deterministic (non-randomized) schemes and one randomized scheme. All three schemes base security on the difficulty of factorizing large integers and support either full (total) or partial message recovery. The standard specifies signature and verification models, message representative production, signature generation and verification procedures, and methods for key generation for the specified schemes. Key management practices and random number generation techniques (required for the randomized scheme) are outside the scope.

General information

• Status: Published (International Standard, confirmed in systematic review).
• Publication date: 15 December 2010 (Edition 3, 2010-12-15).
• Publisher: ISO and IEC (joint standard, developed by ISO/IEC JTC 1/SC 27).
• ICS / categories: 35.030 (Information technology — IT security techniques).
• Edition / version: Third edition (2010).
• Number of pages: 54.

Scope

The standard specifies integer-factorization-based digital signature schemes that provide message recovery. It defines signature and verification models, the production of message representatives, parameter and trailer-field options, capacities, and the procedures for signature generation, verification and key production for the specified schemes. It is limited to the mechanisms themselves; it does not define key management policies or detailed random-number-generation methods required by the randomized scheme.

Key topics and requirements

• Three signature schemes: two deterministic (non-randomized) and one randomized scheme, all based on integer factorization.
• Support for total (full) or partial message recovery from the signature.
• Detailed procedures for message allocation, message representative construction, signature production and signature opening/verification.
• Specification of parameters and constraints (modulus length, trailer-field options, capacity limits).
• Key generation methods for the schemes (explicit key-production requirements).
• Backward-compatibility provisions: the first mechanism is retained for legacy implementations.
• Normative references to hash-function and signature-framework standards for interoperability.

Typical use and users

Implementers of cryptographic libraries and protocols that require message-recoverable RSA-style signatures; smart-card and secure-element vendors; security architects and systems integrators designing digital-signature solutions where embedded message recovery is desired; standards bodies, evaluators and auditors verifying conformance to signature algorithms; researchers and cryptographers studying integer-factorization based signature mechanisms.

Related standards

ISO/IEC 9796 series (other parts), ISO/IEC 14888-1 (digital signature framework), ISO/IEC 10118 series (hash-function specifications), PKCS#1 / RSA cryptography specifications and relevant IETF RFCs for RSA signature formats, and other ISO/IEC JTC 1/SC 27 deliverables on cryptographic techniques and security mechanisms.

Keywords

digital signature, message recovery, RSA, integer factorization, signature scheme, deterministic signature, randomized signature, key generation, trailer field, ISO/IEC 9796-2:2010, IT security.

FAQ

Q: What is this standard?

A: ISO/IEC 9796-2:2010 is the third-edition international standard that defines integer-factorization-based digital signature schemes which allow the original message (or part of it) to be recovered from the signature.

Q: What does it cover?

A: It covers three specific signature mechanisms (two deterministic, one randomized), the formats and procedures for creating and verifying signatures with message recovery, parameter requirements (e.g., modulus length and trailer fields), and methods for key production. It does not cover broader key management or RNG implementation guidance.

Q: Who typically uses it?

A: Cryptographic library developers, implementers of secure devices (such as smart cards), protocol designers who need message-recoverable signatures, security evaluators, and standards bodies working on interoperable signature solutions.

Q: Is it current or superseded?

A: This edition was published on 15 December 2010 (third edition) and was reviewed and confirmed in a later systematic review cycle; it remains the current published version of ISO/IEC 9796-2 (earlier editions from 1997 and 2002 were withdrawn and replaced by the 2010 edition).

Q: Is it part of a series?

A: Yes — ISO/IEC 9796 is a multipart series addressing digital signature schemes giving message recovery (other parts cover different algorithm families and mechanisms), and this document is Part 2 (integer-factorization based mechanisms).

Q: What are the key keywords?

A: Digital signature, message recovery, integer factorization, RSA-style signature, deterministic signature, randomized signature, key generation, trailer field, IT security.