内容简介
JRH-0184—2020金融分布式账本技术安全规范
Financial distributed ledger technology security specification
2020-02-05 发布
2020-02-05 实施
目 次
前言.............................................1
引盲.............................................1
1范围.............................................1
2规范性引用文件.....................1
3术语和定义.........................................1
4缩略语...........................................6
5安全体系框架........................................6
6基础硬件..........................................7
6.1基本要求........................................7
6.2物理安全........................................7
6.3网络安全........................................7
7基础软件..........................................8
7.1基本要求.........................................8
7.2账本结构.........................................8
7.3共识模块.........................................8
7.4分布式组网........................................8
7.5数据存储.........................................8
7.6智能合约.........................................8
7.7接口设计.........................................9
7.8数据传输.........................................9
7.9时何同步.........................................9
7.10操作系统........................................
.........................................
8密码算法...........................................
8.1基本要求.........................................9
8.2保密性..........................................9
8.3完整性..........................................9
8.4真实性..........................................10
8.5不可否认性.......................................10
8.6随机性..........................................10
8.7密钥管理.........................................10
9节点通信...........................................10
9.1基本要求.........................................10
9.2节点身份验证......................................10
9.3通信完整性.......................................10
9.4通信保密性.......................................11
10账本数据..........................................11
10.1完整性............................................11
10.2 -致性...........................................11
10.3保密性............................................11
10.4有效性............................................11
10.5赎本数据冗余.........................................11
10.6访问与使用..........................................11
10.7安全审计...........................................11
11共识协议...............................................12
11-1基本要求............................................12
11.2合法性.............................................12
11.3正确性.............................................12
11.4终局性............................................ 12
11.5 一致性............................................12
11.6不可伪造性...........................................12
11.7可用性.............................................12
11.8健壮性.............................................12
11.9容错性.............................................13
11.10可监管性...........................................13
11.11低延迟........................................... 13
11.12激励相容...........................................13
11.13可拓展性...........................................13
12智能合约...............................................13
12.1基本要求............................................13
12.2版本控制............................................13
12.3访问控制............................................13
12.4复杂度限制...........................................13
12.5原子性.............................................14
12.6 -致性........................................... 14
12.7安全审计............................................14
12.8生命周期管理......................................... 14
12.9攻击防范............................................14
12.10安全验证...........................................14
13身份管理...............................................14
13.1基本要求............................................14
13.2身份定义............................................14
13.3身份注册............................................15
13.4身份核实............................................15
13.5账户管理............................................15
13.6凭证生命周期管理........................................16
13.7身份整别............................................17
13.8节点标识管理..........................................18
13.9身份更新和撤销.........................................18
13.10身份信息安全性........................................18
13.11身份监管审计要求...................................19
14隐私附............................................20
14.1隐私保护原则......................................20
14.2隐私保护内容......................................20
H.3隐私保护策略.......................................20
14.4隐私保护技术要求....................................21
14.5隐私保护监控与审计...................................22
15监管支揮...........................................22
15.1基本要求........................................22
15.2系统监管........................................22
15.3信息管理........................................22
15.4事件处理........................................22
15.5交易干預........................................22
15.6智能合约监管......................................22
16运維要求...........................................22
16.1基本要求........................................23
16.2设备管理........................................23
16.3节点监控.......................................23
16.4节点版本升级......................................23
16.5漏洞修复........................................23
16.6备份与恢复.......................................23
16.7应急预案管理......................................24
16.8权限管理........................................24
16.9议案机制........................................24
17治理机制...........................................24
17.1基本要求........................................24
17.2治理结构........................................24
17.3管控重点.......................................25
参考文献.............................................27
前 言
本标准按眼GB/T 1.1-2009飴出的规则起草。
本标准由中国人民银行数字货币研究所提出.
本标准由全国金融标准化技术委员会(SAC/TC 180)归口。