1 Data Security数据安全
1.1 General概要
For a containerised cargo supply chain RFID system to be compliant with this standard, it shall protect and secure the optional cargo shipment-specific data as defined in clauses 4.10 and 7.3 above.要想使一个集装箱运货物供应链射频识别（RFID）系统符合本标准，它应该按照上面的4.10和7.3对可选的货物运输特定数据进行保护。  The system’s data protection and security shall be at or exceed the minimum level prescribed in clause 8. The minimum level of data security and protection provided by the containerised cargo supply chain RFID system shall prevent any observability of unprotected cargo shipment-specific data.系统的数据保护和安全应达到或超过第8条中所规定的最低水平。集装箱运货物供应链射频识别（RFID）系统所提供的最低水平的数据安全和保护应该能够防止对未经保护的货物运输特定数据进行观察。 The minimum level of data security and protection shall be established no later than at the activity first writing to the shipment tag, and is required to:最低水平的数据安全和保护的建立应不迟于第一次向货运标签写入的时间，而且需要：
? Prevent cargo from being identified, either directly or indirectly防止货物被直接或间接识别。
? Prevent supply chain information from being identified, accessed, altered, amended, changed and deleted by anyone not authorized by the shipper or any agent, representative or entity acting on its behalf防止未经发货人授权的任何人或任何代理商、代理人或实体以其自身的名义对供应链信息进行识别、获取、修改、改正、改变和删除。
? Protect the network and associated information systems from hostile attacks (hacking, viruses, and denial of service)保护网络以及相关信息系统不受敌对攻击（黑客、病毒和拒绝服务）。
? Ensure the validity and integrity of the data accepted, processed and stored by the system确保系统所接受的、处理的和存储的数据的有效性和完整性。

华译网北京翻译公司翻译过大量有关数据安全的文件资料,Beijing Chinese Translation Service Company has translated many technical documents about Data Security
1.2 Confidentiality机密性
The optional CSS data stored in or communicated to or from the tag shall be secured to meet the requirements of clause 8.1.对于存入标签或与标签进行通信的可选CSS数据，应按照第8.1条中的要求对其进行保护。  The technique of securing the data shall be identified in trading partner communications, e.g., EDI.数据的保护技术应该在商业合伙人通信中（例如：EDI）进行确定。  CSS data shall be encrypted or otherwise secured at the point and time when it is first written into the shipment tag and during any subsequent modifications, alterations, changes and/or erasures.在将可选的货物运输特定（CSS）数据第一次写入货运标签内时，以及在后来的修改、变更、改变和/或删除过程中，应将可选的货物运输特定数据加密或进行其它保护。   If encryption is chosen as a method of CSS data security, the level and type of encryption shall be at the discretion and responsibility of the shipper.如果选择加密作为CSS数据安全的方法，应由发货人根据判断并负责确定加密的等级和种类。  The tag shall be capable of having encrypted or otherwise secured data written to it and read from it without interference from the tag design or structure.标签应能够将加密的或经其它保护的数据写入或读出，而不会与标签的设计或结构产生干涉。
1.3 Data integrity数据完整性
 All shipment tags compliant with this International Standard shall have the ability to prevent the alteration or erasure of re-programmable cargo shipment-specific data commonly known as "locking" data.所有符合本国际标准的货运标签都应能够防止对可改写货物运输特定数据进行变更或删除，通常被称为“锁定”数据。  This shall be at the discretion and responsibility of the shipper.这应该根据发货人的判断并由发货人负责。  Tag manufacturers shall have the option of locking a portion of the tag data for identification and storage of data related solely to the manufacturer.标签厂商应该有对一部分标签数据进行锁定以便确认和存储只与厂商有关的数据的选择权。 
1.4  Authentication鉴定
The data storage and transfer protocols of all shipment tags compliant with this International Standard shall require authentication of the interrogator’s authorization prior to reading the tag data.对于符合本国际标准的所有货运标签的数据存储和传输协议，在读取标签数据之前，都需要对询问器进行鉴定。  Reading of only the tag ID and chip ID shall not require authentication.只对标签ID和芯片ID读取的话不需要鉴定。
1.5  Non-repudiation / Audit trail不可否认性/审计追踪
All shipment tags compliant with this International Standard shall not intentionally provide incorrect or misleading data.所有符合本国际标准的货运标签都不应故意提供错误的或易使人误解的数据。  Tags shall be capable of identifying their manufacturer, size and type of data content when properly interrogated.当正确询问时，标签应能够识别它们的厂商、尺寸和数据内容的类型。