BS ISO 13491-1:2007由英国标准学会 GB-BSI 发布于 2007-10-31,并于 2007-10-31 实施。
。
BS ISO 13491-1:2007 银行业 安全密码设备(零售)-概念、要求和评估方法的最新版本是哪一版?
最新版本是 BS ISO 13491-1:2016 。
1 Scope This part of ISO 13491 specifies the requirements for secure cryptographic devices ( SCDs ) based on the cryptographic processes defined in ISO 9564, ISO 16609 and ISO 11568. This part of ISO 13491 has two primary purposes: — to state the requirements concerning both the operational characteristics of SCDs and the management of such devices throughout all stages of their life cycle, and — to standardize the methodology for verifying compliance with those requirements. Appropriate device characteristics are necessary to ensure that the device has the proper operational capabilities and provides adequate protection for the data it contains. Appropriate device management is necessary to ensure that the device is legitimate, that it has not been modified in an unauthorized manner (e.g. by “bugging”) and that any sensitive data placed within the device (e.g. cryptographic keys) has not been subject to disclosure or change. Absolute security is not achievable in practical terms. Cryptographic security depends upon each life cycle phase of the SCD and the complementary combination of appropriate management procedures and secure cryptographic characteristics. These management procedures implement preventive measures to reduce the opportunity for a breach of SCD security. These aim for a high probability of detection of any unauthorized access to sensitive or conf...
BS ISO 13491-1:2007 是基于 ISO 13491-1 的发版本。
Copyright ©2007-2022 ANTPEDIA, All Rights Reserved
京ICP备07018254号 京公网安备1101085018 电信与信息服务业务经营许可证:京ICP证110310号