ISO/IEC 24759:2008 信息技术 安全技术 密码模块的测试要求
标准编号:ISO/IEC 24759:2008
中文名称:信息技术 安全技术 密码模块的测试要求
英文名称:Information technology — Security techniques — Test requirements for cryptographic modules
发布日期:2008-07
标准范围
ISO/IEC 24759:2008规定了测试实验室用于测试加密模块是否符合ISO/IEC 19790:2006规定要求的方法。开发这些方法是为了在测试过程中提供高度的客观性,并确保测试实验室的一致性。在ISO/IEC 24759:2008安全要求条款的每个子条款中,ISO/IEC 19790:2006中相应的安全要求被划分为一组断言(即模块必须为真的声明,以满足给定级别上给定区域的要求)。所有断言都直接引用了ISO/IEC 19790:2006。在每个断言之后是对供应商的一系列要求。这些文件指定了供应商需要提供的文档类型或明确信息,以便测试人员验证与给定断言的一致性。在每个断言和对供应商的要求之后,还有一组对加密模块测试人员的要求。它们指定了测试人员需要做什么,以便根据给定的断言测试加密模块。供应商可以使用ISO/IEC 24759:2008作为指南,在向测试实验室申请测试之前,尝试验证其加密模块是否满足ISO/IEC 19790:2006中规定的要求。
ISO/IEC 24759:2008 specifies the methods to be used by testing laboratories to test whether a cryptographic module conforms to the requirements specified in ISO/IEC 19790:2006. The methods are developed to provide a high degree of objectivity during the testing process and to ensure consistency across the testing laboratories. Within each subclause of the security requirements clause of ISO/IEC 24759:2008, the corresponding security requirements from ISO/IEC 19790:2006 are divided into a set of assertions (i.e. statements that have to be true for the module to satisfy the requirement of a given area at a given level). All of the assertions are direct quotations from ISO/IEC 19790:2006.Following each assertion is a set of requirements levied on the vendor. These specify the types of documentation or explicit information that the vendor is required to provide in order for the tester to verify conformance to the given assertion.Also following each assertion and the requirements levied on the vendor is a set of requirements levied on the tester of the cryptographic module. These specify what the tester needs to do in order to test the cryptographic module with respect to the given assertion.Vendors can use ISO/IEC 24759:2008 as guidance in trying to verify whether their cryptographic modules satisfy the requirements specified in ISO/IEC 19790:2006 before they apply to the testing laboratory for testing.
标准预览图
