Topic-specific policies
ISO/IEC 27551


Search this site
 

ISMS templates

< Previous standard      ^ Up a level ^      Next standard >

 

ISO/IEC 27551:2021 — Information security, cybersecurity and privacy protection — Requirements for attribute-based unlinkable entity authentication (first edition)

 

Abstract

“This document provides a framework and establishes requirements for attribute-based unlinkable entity authentication (ABUEA).”
[Source: ISO/IEC 27551:2021]
 

Introduction

Attribute-Based Unlinkable Entity Authentication is a mechanism for authenticating unfamiliar parties through the services of a mutually-trusted third party, whilst maintaining privacy of the authenticated.

‘Unlinkable’ refers to the need to be able to handle and process personal information anonymously, in a way that precludes being able to identify the original data subjects from the information being communicated and processed.

 

Scope of the standard

The standard describes a framework and requirements for ABUEA - a way of avoiding the privacy leakage that can occur when (for instance) we use Internet sites, providing different information to each one or on each occasion, giving the possibility of linking our disparate disclosures back to us, specifically.

 

Content of the standard

The main clauses cover:

    5. General objectives of attribute-based authentication protocols

    6. Properties of attribute-based authentication protocols

    7. Unlinkable properties of attribute-based authentication protocols

    8. Attributes

    9. Requirements for level N ABUEA

... plus annexes with examples, use cases etc.

 

Status

The first edition was published in 2021.

 

Personal comments

It would be a challenge to adopt ISO’s version of plain English for such a deep dive into the technology.

 

< Previous standard      ^ Up a level ^      Next standard >

Copyright © 2024 IsecT Ltd. Contact us re Intellectual Property Rights