|
|
A group of segments identifying the security service and security mechanisms applied and containing the data necessary to carry out the validation calculations. This segment group shall specify the security service and algorithm(s) applied to the referenced EDIFACT structure. Each security header group shall be linked to a security trailer group, and additionally linked to the USY segment(s). |
|
|
|
|
A group of segments containing the data necessary to validate the security methods applied. |
|
|
|
|
|
Function: |
|
To identify a security algorithm, the technical usage made of it, and to contain the technical parameters required.
Notes: 1. S503, provides space for one parameter. The number of repetitions of S503 actually used will depend on the algorithm used. The order of the parameters is arbitrary but, in each case, the actual value is preceded by a coded algorithm parameter qualifier. |
|
|
|
EAN |
* |
|
|
|
|
M |
|
|
|
|
|
M |
* |
|
|
|
Cryptographic mode of operation, coded |
|
|
R |
* |
|
General explanations |
16 |
|
= |
DSMR |
|
Specification of the cryptographic mode of operation used for the algorithm. |
|
Note: The cryptographic mode of operation are the security functions authenticity, integrity and non-repudiation of origin. The digital signature includes all three security functions. |
|
|
|
Mode of operation code list identifier |
|
|
R |
* |
|
|
|
|
R |
|
10 |
|
= |
RSA |
17 |
|
= |
ECC |
|
Identification of the algorithm in order to generate the digital signature. The algorithms above are recommended. |
|
|
|
Algorithm code list identifier |
|
|
R |
* |
|
|
|
|
R |
* |
|
General explanations |
7 |
|
= |
ISO 9796 #2 padding |
|
Note: "ISO 9796 #2 padding" specifies the technical standard which is facilitating the security service "digital signature scheme giving message recovery" specified in DE 0525. |
|
|
|
Padding mechanism code list identifier |
|
|
R |
* |
|
|
|
|
N |
|
|
|
|
Algorithm parameter qualifier |
|
|
|
|
|
|
|
Algorithm parameter value |
|
|
|
|
|
|
Segment Notes: |
|
This segment is used to identify a security algorithm, the technical usage made of it, and contains the technical parameters required in order to generate the digital signature. At least one occurrence of this segment is mandatory.
Example: USA+6:16:1:10:1:7:1' |
|