EN 9300-005:2017
(Main)Aerospace series - LOTAR - LOng Term Archiving and Retrieval of digital technical product documentation such as 3D, CAD and PDM data - Part 005: Authentication and Verification
Aerospace series - LOTAR - LOng Term Archiving and Retrieval of digital technical product documentation such as 3D, CAD and PDM data - Part 005: Authentication and Verification
EN 9300-005 describes the fundamentals and concepts of authentication and verification of the integrity of digital documents and their content during the archiving and retrieval processes. The Data Domain Parts EN 9300-x00 will specify qualification measures for the content of the document. The fundamentals given in this document cover the requirements, methods and recommendations for their implementation within an archiving system.
Luft- und Raumfahrt - LOTAR - Langzeit-Archivierung und -Bereitstellung digitaler technischer Produktdokumentationen, wie zum Beispiel von 3D-, CAD- und PDM-Daten - Teil 005: Authentifizierung und Verifizierung
Série aérospatiale - LOTAR - Archivage long terme et récupération des données techniques produits numériques telles que CAD 3D et PDM - Partie 005 : Authentification et Vérification
Aeronavtika - LOTAR - Dolgotrajno arhiviranje in iskanje digitalne tehnične dokumentacije o izdelkih, kot so podatki o 3D, CAD in PDM - 005. del: Avtentikacija in overjanje
Standard EN 9300-005 opisuje temeljne smernice in načela avtentikacije in overjanja integritete digitalnih dokumentov ter njihove vsebine pri postopkih arhiviranja in iskanja. Deli standarda EN 9300-x00 o podatkovnih domenah bodo določali ukrepe za kvalifikacijo vsebine dokumenta. Temeljne smernice, podane v tem dokumentu, zajemajo zahteve, metode in priporočila za njihovo
uvedbo znotraj sistema arhiviranja.
General Information
Standards Content (Sample)
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.Luft- und Raumfahrt - LOTAR - Langzeit-Archivierung und -Bereitstellung digitaler technischer Produktdokumentationen, wie zum Beispiel von 3D-, CAD- und PDM-Daten - Teil 005: Authentifizierung und VerifikationSérie aérospatiale - LOTAR - Archivage long terme et récupération des données techniques produits numériques telles que CAD 3D et PDM - Partie 005 : Authentification et VérificationAerospace series - LOTAR - LOng Term Archiving and Retrieval of digital technical product documentation such as 3D, CAD and PDM data - Part 005: Authentication and Verification49.020Letala in vesoljska vozila na splošnoAircraft and space vehicles in general35.240.30Uporabniške rešitve IT v informatiki, dokumentiranju in založništvuIT applications in information, documentation and publishing01.110L]GHONHTechnical product documentationICS:Ta slovenski standard je istoveten z:EN 9300-005:2017SIST EN 9300-005:2017en,fr,de01-december-2017SIST EN 9300-005:2017SLOVENSKI
STANDARD
EUROPEAN STANDARD NORME EUROPÉENNE EUROPÄISCHE NORM
EN 9300-005
October
t r s y ICS
r sä s s râ
u wä t v rä u râ
u wä t v rä x râ
v {ä r t r English Version
Aerospace series æ LOTAR æ LOng Term Archiving and Retrieval of digital technical product documentation such as
uDá CAD and PDM data æ Part
r r wã Authentication and Verification Série aérospatiale æ LOTAR æ Archivage long terme et récupération des données techniques produits numériques telles que CAD
uD et PDM æ Partie
r r w ã Authentification et Vérification
Luftæ und Raumfahrt æ LOTAR æ LangzeitæArchivierung und æBereitstellung digitaler technischer Produktdokumentationená wie zum Beispiel von
uDæá CADæ und PDMæDaten æ Teil
r r wã Authentifizierung und Verifizierung This European Standard was approved by CEN on
s x July
t r s yä
egulations which stipulate the conditions for giving this European Standard the status of a national standard without any alterationä Upætoædate lists and bibliographical references concerning such national standards may be obtained on application to the CENæCENELEC Management Centre or to any CEN memberä
translation under the responsibility of a CEN member into its own language and notified to the CENæCENELEC Management Centre has the same status as the official versionsä
CEN members are the national standards bodies of Austriaá Belgiumá Bulgariaá Croatiaá Cyprusá Czech Republicá Denmarká Estoniaá Finlandá Former Yugoslav Republic of Macedoniaá Franceá Germanyá Greeceá Hungaryá Icelandá Irelandá Italyá Latviaá Lithuaniaá Luxembourgá Maltaá Netherlandsá Norwayá Polandá Portugalá Romaniaá Serbiaá Slovakiaá Sloveniaá Spainá Swedená Switzerlandá Turkey and United Kingdomä
EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG
CEN-CENELEC Management Centre:
Avenue Marnix 17,
B-1000 Brussels
t r s y CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Membersä Refä Noä EN
{ u r ræ r r wã t r s y ESIST EN 9300-005:2017
(informative)
Use cases and recommended solutions
for issues of authentication and verification . 16
Figures Figure 1 — Check and renew signature document. 8 Figure 2 — Concept of repair in data preparation / ingest process and retrieval process . 12 Figure 3 — Creation and check of electronic signatures . 14 Figure 4 — Validity of electronic signatures . 14 Figure 5 — Verification period of electronic signatures . 15
5.1.2 Authentication by User Key and Password EN 9300 recommends authentication policies based on current business practices for user keys and passwords as the initial user authentication quality level. Advantages: legal recommendations for documentation of the release process are fulfilled; there is no need for a PKI and no additional hardware for identification is required. Disadvantage: the validity in the context of lawsuits is less than under PKI. 5.2 Authentication of Document and Content
Applying authentication to a document and its content will improve its evidential weight in the context of legal proceedings. The authenticity of a digital document can be proved with the document hash code. In case of a change of content, a new electronic document must be created and authenticated. 5.2.1 Requirements to Hash Codes For signing and verification a hash code will be used like a digital finger print. To ensure that no security gaps occur, the hash code must fulfil the following criteria: it should practically be impossible to find a collision (where two or more different digital documents generate an identical hash code); creating hash codes shall be an one way function. It should not be possible to find a file that generates a given hash code. NOTE From a theoretical point of view collisions are inevitable. SIST EN 9300-005:2017
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.