Red/black concept (original) (raw)

About DBpedia

红/黑概念,有时也被称作红/黑架构或红/黑工程,指的是指的是 加密 系统谨慎区分包含有敏感的涉密的明文信息(红信号)与那些不敏感的密文信息(黑信号)的设计。因此,包含“红色内容”的一边通常是在内部的,而包含“黑色内容”的一边通常是公开的,它们之间使用 网关、 防火墙 或 单向网络信道 加以隔离。 美国国家安全局通常将加密设备成为BLACKER(加密黑箱),这个命名就来自加密设备将红信号转换为黑信号的功能特点。 TEMPEST/2-95标准定义了传输处理红/黑信号的信道间最小的安全距离或屏蔽方式 不同组织对传输红/黑数据的光纤电缆有着不同的要求。 红/黑这种术语用法也适用于密钥。 黑密钥之所以不敏感,是因为它们被用于加密其它密钥的密钥(KEK, Key Encryption Key)加密后已经脱敏。而红密钥因为未被加密,因此必须被视为高度敏感的内容。

thumbnail

Property Value
dbo:abstract Das red/black concept (dt. rot/schwarz-Konzept) beschreibt eine sichere Abschottung in kryptografischen Umgebungen zwischen den unverschlüsselten (Plaintext) heiklen oder klassifizierten Informationen (red signals / rote Signale) von den verschlüsselten Informationen, auch Ciphertext genannt (black signals / schwarze Signale). Im NSA-Jargon werden Verschlüsselungsgeräte oft „blackers“ genannt, da sie rote (unverschlüsselte) Daten in schwarze (verschlüsselte) Signale konvertieren. Der TEMPEST-Standard schreibt in NSTISSAM Tempest/2-95 eine Mindestabschirmung oder eine physikalische Mindestdistanz zwischen Kabeln oder Hardware für Red- und Black-Signale vor. Verschiedene Organisationen haben verschiedene Anforderungen für die Trennung von Red- und Black-Glasfaserkabeln. Die Red/Black-Terminologie wird außerdem im Bereich kryptografischer Schlüssel verwendet: * Black keys wurden ihrerseits mit einem Key Encryption Key (KEK) verschlüsselt und sind daher sicher. * Red keys sind nicht verschlüsselt und müssen daher als hochsensibles Material betrachtet werden. (de) The red/black concept, sometimes called the red–black architectureor red/black engineering,refers to the careful segregation in cryptographic systems of signals that contain sensitive or classified plaintext information (red signals) from those that carry encrypted information, or ciphertext (black signals). Therefore, the red side is usually considered the internal side, and the black side the more public side, with often some sort of guard, firewall or data-diode between the two. In NSA jargon, encryption devices are often called blackers, because they convert red signals to black. TEMPEST standards spelled out in Tempest/ specify shielding or a minimum physical distance between wires or equipment carrying or processing red and black signals. Different organizations have differing requirements for the separation of red and black fiber optic cables. Red/black terminology is also applied to cryptographic keys. Black keys have themselves been encrypted with a "key encryption key" (KEK) and are therefore benign. Red keys are not encrypted and must be treated as highly sensitive material. (en) O conceito vermelho/preto, às vezes chamado de arquitetura vermelha preta ou engenharia vermelha/preto, se refere à segregação cuidadosa em sistemas criptográficos de sinais que contêm informações confidenciais ou classificadas em texto simples (sinais vermelhos) daqueles que transportam informações criptografadas ou em texto cifrado (sinais pretos). Portanto, o lado vermelho é geralmente considerado o lado interno, e o lado preto o lado mais público, geralmente com algum tipo de guarda, firewall ou diodo de dados entre os dois. No jargão da agência de segurança nacional (NSA), os dispositivos de criptografia costumam ser chamados de blackers, porque convertem sinais vermelhos em pretos. Os padrões TEMPEST enunciados em Tempest/2-95 especificam blindagem ou uma distância física mínima entre fios ou equipamentos que transportam ou processam sinais vermelhos e pretos. Diferentes organizações têm diferentes requisitos para a separação de cabos de fibra ótica vermelhos e pretos. A terminologia vermelho/preto também é aplicada a chaves criptográficas. As chaves pretas foram criptografadas com uma "chave de criptografia de chave" (KEK) e, portanto, são benignas. As chaves vermelhas não são criptografadas e devem ser tratadas como material altamente sensível. (pt) 红/黑概念,有时也被称作红/黑架构或红/黑工程,指的是指的是 加密 系统谨慎区分包含有敏感的涉密的明文信息(红信号)与那些不敏感的密文信息(黑信号)的设计。因此,包含“红色内容”的一边通常是在内部的,而包含“黑色内容”的一边通常是公开的,它们之间使用 网关、 防火墙 或 单向网络信道 加以隔离。 美国国家安全局通常将加密设备成为BLACKER(加密黑箱),这个命名就来自加密设备将红信号转换为黑信号的功能特点。 TEMPEST/2-95标准定义了传输处理红/黑信号的信道间最小的安全距离或屏蔽方式 不同组织对传输红/黑数据的光纤电缆有着不同的要求。 红/黑这种术语用法也适用于密钥。 黑密钥之所以不敏感,是因为它们被用于加密其它密钥的密钥(KEK, Key Encryption Key)加密后已经脱敏。而红密钥因为未被加密,因此必须被视为高度敏感的内容。 (zh)
dbo:thumbnail wiki-commons:Special:FilePath/RedBlack.png?width=300
dbo:wikiPageID 1065533 (xsd:integer)
dbo:wikiPageLength 3936 (xsd:nonNegativeInteger)
dbo:wikiPageRevisionID 1102282134 (xsd:integer)
dbo:wikiPageWikiLink dbr:Security_engineering dbr:Unidirectional_network dbc:Cryptography dbr:Computer_security dbr:Cryptographic dbr:Plaintext dbr:Classified_information dbr:NSA dbr:Key_(cryptography) dbc:Security_engineering dbr:Fiber_optic_cable dbc:Secure_communication dbr:Blacker_(security) dbr:Ciphertext dbr:Guard_(information_security) dbr:Secure_by_design dbr:Firewall_(computing) dbr:NSTISSAM_TEMPEST/2-95 dbr:TEMPEST dbr:File:NSA_Red-Gray-Black_diagram.png dbr:File:RedBlack.png
dbp:wikiPageUsesTemplate dbt:! dbt:Other_uses dbt:Reflist dbt:Short_description dbt:Crypto-stub
dcterms:subject dbc:Cryptography dbc:Security_engineering dbc:Secure_communication
rdfs:comment 红/黑概念,有时也被称作红/黑架构或红/黑工程,指的是指的是 加密 系统谨慎区分包含有敏感的涉密的明文信息(红信号)与那些不敏感的密文信息(黑信号)的设计。因此,包含“红色内容”的一边通常是在内部的,而包含“黑色内容”的一边通常是公开的,它们之间使用 网关、 防火墙 或 单向网络信道 加以隔离。 美国国家安全局通常将加密设备成为BLACKER(加密黑箱),这个命名就来自加密设备将红信号转换为黑信号的功能特点。 TEMPEST/2-95标准定义了传输处理红/黑信号的信道间最小的安全距离或屏蔽方式 不同组织对传输红/黑数据的光纤电缆有着不同的要求。 红/黑这种术语用法也适用于密钥。 黑密钥之所以不敏感,是因为它们被用于加密其它密钥的密钥(KEK, Key Encryption Key)加密后已经脱敏。而红密钥因为未被加密,因此必须被视为高度敏感的内容。 (zh) Das red/black concept (dt. rot/schwarz-Konzept) beschreibt eine sichere Abschottung in kryptografischen Umgebungen zwischen den unverschlüsselten (Plaintext) heiklen oder klassifizierten Informationen (red signals / rote Signale) von den verschlüsselten Informationen, auch Ciphertext genannt (black signals / schwarze Signale). Verschiedene Organisationen haben verschiedene Anforderungen für die Trennung von Red- und Black-Glasfaserkabeln. Die Red/Black-Terminologie wird außerdem im Bereich kryptografischer Schlüssel verwendet: (de) The red/black concept, sometimes called the red–black architectureor red/black engineering,refers to the careful segregation in cryptographic systems of signals that contain sensitive or classified plaintext information (red signals) from those that carry encrypted information, or ciphertext (black signals). Therefore, the red side is usually considered the internal side, and the black side the more public side, with often some sort of guard, firewall or data-diode between the two. Different organizations have differing requirements for the separation of red and black fiber optic cables. (en) O conceito vermelho/preto, às vezes chamado de arquitetura vermelha preta ou engenharia vermelha/preto, se refere à segregação cuidadosa em sistemas criptográficos de sinais que contêm informações confidenciais ou classificadas em texto simples (sinais vermelhos) daqueles que transportam informações criptografadas ou em texto cifrado (sinais pretos). Portanto, o lado vermelho é geralmente considerado o lado interno, e o lado preto o lado mais público, geralmente com algum tipo de guarda, firewall ou diodo de dados entre os dois. (pt)
rdfs:label Red/black concept (de) Red/black concept (en) Conceito vermelho/preto (pt) 红/黑概念 (zh)
owl:sameAs freebase:Red/black concept yago-res:Red/black concept wikidata:Red/black concept dbpedia-de:Red/black concept dbpedia-pt:Red/black concept dbpedia-zh:Red/black concept https://global.dbpedia.org/id/4tTR2
prov:wasDerivedFrom wikipedia-en:Red/black_concept?oldid=1102282134&ns=0
foaf:depiction wiki-commons:Special:FilePath/NSA_Red-Gray-Black_diagram.png wiki-commons:Special:FilePath/RedBlack.png
foaf:isPrimaryTopicOf wikipedia-en:Red/black_concept
is dbo:wikiPageRedirects of dbr:Red/black_separation dbr:RED/BLACK_concept dbr:RED_signal dbr:Red-black_separation dbr:Code_room
is dbo:wikiPageWikiLink of dbr:Defense_Red_Switch_Network dbr:Index_of_cryptography_articles dbr:Plaintext dbr:Blacker dbr:Red/black_separation dbr:High_Assurance_Internet_Protocol_Encryptor dbr:Tempest_(codename) dbr:Mobile_User_Objective_System dbr:Secure_Terminal_Equipment dbr:Selective_availability_anti-spoofing_module dbr:RED/BLACK_concept dbr:RED_signal dbr:Red-black_separation dbr:Code_room
is foaf:primaryTopic of wikipedia-en:Red/black_concept