IEC ISO/EC 14776-481 ISO Edition 1.02019-12 INTERNATIONAL STANDARD colour inside Information technology-Small Computer System Interface (ScSl)- Part 481: Security features for SCSI commands (SFSC) ISO/IEC 14776-481:2019-12(en) THIS PUBLICATION IS COPYRIGHT PROTECTED Copyright @ 2019 ISO/IEC, Geneva, Switzerland either IEC or IEC's member National Committee in the country of the requester. If you have any questions about iso/IEC copyright or have an enquiry about obtaining additionai rights to this publication, please contact the address below or your local IEC member National Committee for further information. IEC Central Office Tel.: +41 22 919 02 11 3,rue de Varembé [email protected] CH-1211 Geneva 20 www.iec.ch Switzerland Aboutthe IEC International Standards for all electrical, electronic and related technologies. AboutIECpublications The technical content of IEC publications is kept under constant review by the IEC.Please make sure that youhave the latest edition,a corrigendum oran amendmentmighthavebeenpublished. IECpublicationssearch-webstore.iec.ch/advsearchform Electropedia - www.electropedia.org Theadvanced searchenablestofindIECpublicationsbya The world's leading online dictionary on electrotechnology, varietyofcriteria(referencenumber, text, technical containingmorethan22000terminological entries in English committee,...).It also gives information onprojects,replaced and French, with equivalent terms in 16 additional languages. and withdrawn publications. Alsoknown as the International Electrotechnical Vocabulary (IEV) online. IECJustPublished-webstore.iec.ch/justpublished Stay up to date on all new IEC publications. Just Published IEC Glossary - std.iec.ch/glossary details all new publications released. Available online and 67 000 electrotechnical terminology entries in English and once a month by email. French extracted from the Terms and Definitions clause of iEc publications issued since 2002. Some entries have been IEC Customer Service Centre - webstore.iec.ch/csc collected from earlier publications of IEC TC 37, 77, 86 and If you wish to give us your feedback on this publication or CISPR. needfurtherassistance,pleasecontacttheCustomerService Centre:[email protected]. IEC ISO ISO/IEC 14776-481 Edition 1.02019-12 INTERNATIONAL STANDARD colour inside Informationtechnology-Small ComputerSystem Interface (ScSl)- Part481:SecurityfeaturesforSCSlcommands(SFSC) INTERNATIONAL ELECTROTECHNICAL COMMISSION ICS 35.200 ISBN 978-2-8322-7663-1 Warning! Make sure that you obtained this publication from an authorized distributor. ISO/IEC IEC 14776-481 Information technology - Small Computer System Interface (ScSl) : Part 481: Security features for SCSI commands (SFSC) Reference ISO/IEC 14776-481 ISO/IEC 14776-481:2019 @ISO/IEC 2019 - 2 - Contents Page FOREWORD.. .9 INTRODUCTION.... 1 Scope... ..12 2 Normative references... 3 Terms and definitions, symbols, abbreviations, and conventions 3.1 Terms and definitions .. 14 3.2 Abbreviations and symbols..... 3.2.1 Abbreviations.. .24 3.2.2 Symbols..... .25 3.2.3 Mathematical operators .. 3.3 Keywords.... 25 3.4 Editorial conventions .. 3.5 Numeric and character conventions ..... 27 3.1 Numeric conventions .... 3.5.2Unitsofmeasure .28 3.5.3 Byte encoded character strings conventions. .29 3.6 Bit and byte ordering . .29 4 Security features model common to all device types..... 4.1 Security features for ScsI devices... .31 4.1.1 Security associations.... .31 4.1.1.1 Principles of SAs . .31 4.1.1.2 SA parameters... .32 4.1.1.3 Creating an SA ... .34 4.1.2 Key derivation functions .. .35 4.1.2.1 KDFs overview ..... 4.1.2.2IKEv2-basediterativeKDF .36 4.2.3 HMAC-based KDFs ..... 36 4.1.2.4 AES-XCBC-PRF-128 IKEv2-based iterative KDF 4.1.3 Using IKEv2-SCSI to create an SA . 38 4.1.3.1 Overview....... 4.1.3.2 IKEv2-SCSI Protocol summary .. .42 4.1.3.3 IKEv2-SCSI Authentication...... 4.1.3.3.1 Overview.. .44 4.1.3.3.2 Pre-shared key authentication... .45 4.1.3.3.3 Digital signature authentication .. .46