1、 ISO/IEC 29341-13-10Edition 1.0 2008-11INTERNATIONAL STANDARD Information technology UPnP Device Architecture Part 13-10:Device Security Device Control Protocol Device Security Service ISO/IEC 29341-13-10:2008(E)THIS PUBLICATION IS COPYRIGHT PROTECTED Copyright 2008 ISO/IEC,Geneva,Switzerland All ri
2、ghts reserved.Unless otherwise specified,no part of this publication may be reproduced or utilized in any form or by any means,electronic or mechanical,including photocopying and microfilm,without permission in writing from either IEC or IECs member National Committee in the country of the requester
3、.If you have any questions about ISO/IEC copyright or have an enquiry about obtaining additional rights to this publication,please contact the address below or your local IEC member National Committee for further information.IEC Central Office 3,rue de Varemb CH-1211 Geneva 20 Switzerland Email:inma
4、iliec.ch Web:www.iec.ch About the IEC The International Electrotechnical Commission(IEC)is the leading global organization that prepares and publishes International Standards for all electrical,electronic and related technologies.About IEC publications The technical content of IEC publications is ke
5、pt under constant review by the IEC.Please make sure that you have the latest edition,a corrigenda or an amendment might have been published.?Catalogue of IEC publications:www.iec.ch/searchpub The IEC on-line Catalogue enables you to search by a variety of criteria(reference number,text,technical co
6、mmittee,).It also gives information on projects,withdrawn and replaced publications.?IEC Just Published:www.iec.ch/online_news/justpub Stay up to date on all new IEC publications.Just Published details twice a month all new publications released.Available on-line and also by email.?Electropedia:www.
7、electropedia.org The worlds leading online dictionary of electronic and electrical terms containing more than 20 000 terms and definitions in English and French,with equivalent terms in additional languages.Also known as the International Electrotechnical Vocabulary online.?Customer Service Centre:w
8、ww.iec.ch/webstore/custserv If you wish to give us your feedback on this publication or need further assistance,please visit the Customer Service Centre FAQ or contact us:Email:csciec.ch Tel.:+41 22 919 02 11 Fax:+41 22 919 03 00 ISO/IEC 29341-13-10Edition 1.0 2008-11INTERNATIONAL STANDARD Informati
9、on technology UPnP Device Architecture Part 13-10:Device Security Device Control Protocol Device Security Service INTERNATIONAL ELECTROTECHNICAL COMMISSION XICS 35.200 PRICE CODEISBN 2-8318-1012-8 2 29341-13-10 ISO/IEC:2008(E)CONTENTS FOREWORD.5 ORIGINAL UPNP DOCUMENTS(informative).7 1.Overview and
10、Scope.9 1.1.Acknowledgements.11 2.Service Modeling Definitions.12 2.1.Service Type.12 2.2.Namespaces.12 2.3.Referenced Specifications.12 2.4.MustUnderstand.12 2.5.State Variables.13 2.5.1.NumberOfOwners.13 2.5.2.LifetimeSequenceBase.13 2.5.3.TimeHint.14 2.5.4.TotalACLSize.14 2.5.5.FreeACLSize.14 2.5
11、.6.TotalOwnerListSize.14 2.5.7.FreeOwnerListSize.14 2.5.8.TotalCertCacheSize.14 2.5.9.FreeCertCacheSize.14 2.5.10.A_ARG_TYPE_string.14 2.5.11.A_ARG_TYPE_base64.14 2.5.12.A_ARG_TYPE_int.14 2.5.13.A_ARG_TYPE_boolean.15 2.6.Eventing and Moderation.15 2.7.Actions.16 2.8.Cryptographic Notation for Select
12、ed Actions.17 2.9.Actions Invoked by Both CP and SC.17 2.9.1.GetPublicKeys.17 2.9.2.GetAlgorithmsAndProtocols.18 2.9.3.GetACLSizes.19 2.9.4.CacheCertificate.20 2.9.5.SetTimeHint.22 2.9.6.GetLifetimeSequenceBase.23 2.9.7.SetSessionKeys.24 2.9.8.ExpireSessionKeys.26 2.9.9.DecryptAndExecute.27 2.10.Act
13、ions Invoked by SC only.28 2.10.1.TakeOwnership.28 2.10.2.GetDefinedPermissions.30 2.10.3.GetDefinedProfiles.31 2.10.4.ReadACL.33 2.10.5.WriteACL.34 2.10.6.AddACLEntry.35 2.10.7.DeleteACLEntry.36 2.10.8.ReplaceACLEntry.37 2.10.9.FactorySecurityReset.38 2.10.10.GrantOwnership.39 2.10.11.RevokeOwnersh
14、ip.40 2.10.12.ListOwners.41 2.11.Relationships among Actions.43 29341-13-10 ISO/IEC:2008(E)3 2.11.1.Relationships among Actions invoked by Security Console.43 2.11.2.Relationships among Actions invoked by normal Control Point.43 2.11.3.ACLVersion.44 2.12.Common Error Codes.45 3.Supporting Informatio
15、n.46 3.1.Glossary.46 3.2.XML Strings as UPnP Arguments.46 3.3.BASE32 Encoding.47 3.4.Namespaces.47 4.Data Structures.48 4.1.Namespaces.48 4.2.Access Control List(ACL)Structure.48 4.2.1.Note on date and time format:ISO 8601.49 4.3.Owner List.49 4.4.Certificates.50 4.4.1.Authorization Certificate.50 4
16、.4.2.Name Definition Certificate.51 4.5.Permission Language.52 4.5.1.52 4.5.2.52 4.5.3.52 4.5.4.52 4.5.5.52 4.6.RSA Encryption Padding.53 4.6.1.SetSessionKeys.54 4.6.2.TakeOwnership.54 4.6.3.Counteracting attacks on PKCS#1 V 1.5 padding.54 4.6.4.Historical note about padding and padding attacks.55 4.7.Public Keys and their hashes.55 4.8.Symmetric cipher mode and padding.56 4.9.Canonical BASE64 Encoding.56 5.Theory of Operation.58 5.1.Access Control Lists and Certificates.58 5.1.1.ACL and Certifi
