ISO/IEC 19790:2006 信息技术.安全技术.密码模块的安全要求

标准编号：ISO/IEC 19790:2006

中文名称：信息技术.安全技术.密码模块的安全要求

英文名称：Information technology — Security techniques — Security requirements for cryptographic modules

发布日期：2006-03

标准范围

ISO/IEC 19790:2006规定了在保护计算机和电信系统中的敏感信息的安全系统中使用的加密模块的安全要求。ISO/IEC 19790:2006规定了以下内容。提高加密模块安全性的四个级别。每个级别都比前一个级别提供了更高的安全性。以下功能安全目标:模块规范；端口和接口；角色、服务和身份验证；有限状态模型；物理安全；操作环境；加密密钥管理；自检；设计保证；减轻其他攻击。ISO/IEC 19790:2006将由定义相关评估和测试方法的未来国际标准进行补充。ISO/IEC 19790:2006源自2001年5月25日NIST联邦信息处理标准出版物140-2。

ISO/IEC 19790:2006 specifies the security requirements for a cryptographic module utilized within a security system protecting sensitive information in computer and telecommunication systems.ISO/IEC 19790:2006 specifies the following.

• Four levels of increasing security for cryptographic modules. Each level offers an increase in security over the preceding level.
• The following functional security objectives:
  • module specification;
  • ports and interfaces;
  • roles, services and authentication;
  • finite state model;
  • physical security;
  • operational environment;
  • cryptographic key management;
  • self-tests;
  • design assurance;
  • mitigation of other attacks.

ISO/IEC 19790:2006 will be complemented by a future International Standard defining the associated evaluation and test methods.ISO/IEC 19790:2006 is derived from NIST Federal Information Processing Standard PUB 140-2 May 25, 2001.

标准预览图