DICOM PS3.15 2017d - Security and System Management Profiles

2 Normative References

The following standards contain provisions that, through reference in this text, constitute provisions of this Standard. At the time of publication, the editions indicated were valid. All standards are subject to revision, and parties to agreements based on this Standard are encouraged to investigate the possibilities of applying the most recent editions of the standards indicated below.

[ISO/IEC Directives, Part 2] ISO/IEC. 2016/05. 7.0. Rules for the structure and drafting of International Standards. http://www.iec.ch/members_experts/refdocs/iec/isoiecdir-2%7Bed7.0%7Den.pdf .

ANSI X9.52 American National Standards Institute. ANSI X9.52-1998, Triple Data Encryption Algorithm Modes of Operation. 1998.

ECMA 235, The ECMA GSS-API Mechanism

FIPS PUB 46 Data Encryption Standard

FIPS PUB 81 DES Modes of Operation

IETF Internet X.509 Public Key Infrastructure; Time Stamp Protocols; March 2000

ISO/IEC 10118-:1998 Information technology - Security techniques - Hash-functions - Part 3: Dedicated hash-functions (RIPEMD-160 reference)

Note: The draft RIPEMD-160 specification and sample code are also available at ftp://ftp.esat.kuleuven.ac.be/pub/bosselae/ripemd

ISO 7498-1, Information Processing Systems - Open Systems Interconnection - Basic Reference Model

ISO 7498-2, Information processing systems - Open Systems Interconnection - Basic reference Model - Part 2: Security Architecture

ISO/TR 8509, Information Processing Systems - Open Systems Interconnection - Service Conventions

ISO 8649:1987, Information Processing Systems - Open Systems Interconnection - Service Definition for the Association Control Service Element

Integrated Secure Communication Layer V1.00 MEDIS-DC

ITU-T Recommendation X.509 (03/00) "Information technology - Open Systems Interconnection - The directory: Public-key and attribute certificate frameworks"


ITU-T Recommendation X.509 is similar to ISO/IEC 9594-8 1990. However, the ITU-T recommendation is the more familiar form, and was revised in 1993 and 2000, with two sets of corrections in 2001. ITU-T was formerly known as CCITT.

RFC1035 Domain Name System (DNS)

RFC1305 Network Time Protocol (Version 3) Specification, Implementation

RFC2030 Simple Network Time Protocol (SNTP) Version 4

RFC2131 Dynamic Host Configuration Protocol

RFC2132 Dynamic Host Configuration Protocol Options

RFC2136 Dynamic Updates in the Domain Name System (DNS UPDATE)

RFC2181 Clarifications to the DNS Specification

RFC2219 Use of DNS Aliases for Network Services

RFC2246, Transport Layer Security (TLS) 1.0 Internet Engineering Task Force


TLS is derived from SSL 3.0, and is largely compatible with it.

RFC2251 Lightweight Directory Access Protocol (v3)

RFC2313 PKCS #1: RSA Encryption, Version 1.5, March 1998.

RFC2563 DHCP Option to Disable Stateless Auto-Configuration in IPv4 Clients

RFC2782 A DNS RR for specifying the location of services (DNS SRV)

RFC2849 The LDAP Data Interchange Format (LDIF)

RFC2898 PKCS #5: Password-Based Cryptography Specification Version 2.0, September 2000

RFC3211 Password-based Encryption for CMS, December 2001

RFC3268 Advanced Encryption Standard (AES) Ciphersuites for Transport Layer Security (TLS), June 2002.

RFC3447 PKCS #1 RSA Cryptography Specifications Version 2.1, February 2003


The RSA Encryption Standard is also defined in informative annex A of ISO/IEC 9796, and in Normative Annex A of the CEN/TC251 European Prestandard prENV 12388:1996.

RFC3852 Cryptographic Message Syntax,July 2004

RFC3370 Cryptographic Message Syntax (CMS) Algorithms, August 2002

RFC3565 Use of the Advanced Encryption Standard (AES) Encryption Algorithm in Cryptographic Message Syntax (CMS), July 2003

SHA-1 National Institute of Standards and Technology, FIPS Pub 180-1: Secure Hash Standard, 17 April 1995

SHA-2 National Institute of Standards and Technology, FIPS Pub 180-2: Secure Hash Standard, 1 August 2002

RFC3851 Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.1 Message Specification

RFC3853 S/MIME Advanced Encryption Standard (AES) Requirement for the Session Initiation Protocol (SIP)

RFC5424 The Syslog Protocol

RFC5425 Transport Layer Security (TLS) Transport Mapping for Syslog

RFC5426 Transmission of Syslog Messages over UDP


Normative RFC's are frequently updated by issuance of subsequent RFC's. The original older RFC is not modified to include references to the newer RFC.

DICOM PS3.15 2017d - Security and System Management Profiles