ISO/IEC JTC 1/SC 27
| Project No. | ISO/IEC 19790:2006 |
|---|---|
| Title | <p>ISO/IEC 19790:2006 specifies the security requirements for a cryptographic module utilized within a security system protecting sensitive information in computer and telecommunication systems.</p> <p>ISO/IEC 19790:2006 specifies the following.</p> <ul><li>Four levels of increasing security for cryptographic modules. Each level offers an increase in security over the preceding level. </li><li>The following functional security objectives:<ul><li>module specification;</li><li>ports and interfaces;</li><li>roles, services and authentication;</li><li>finite state model;</li><li>physical security; </li><li>operational environment;</li><li>cryptographic key management;</li><li>self-tests; </li><li>design assurance;</li><li>mitigation of other attacks.</li></ul></li></ul> <p>ISO/IEC 19790:2006 will be complemented by a future International Standard defining the associated evaluation and test methods.</p> <p>ISO/IEC 19790:2006 is derived from NIST Federal Information Processing Standard PUB 140-2 May 25, 2001. </p> |
| Registration number (WIID) | 33928 |
| Scope | <p>ISO/IEC 19790:2006 specifies the security requirements for a cryptographic module utilized within a security system protecting sensitive information in computer and telecommunication systems.</p> <p>ISO/IEC 19790:2006 specifies the following.</p> <ul><li>Four levels of increasing security for cryptographic modules. Each level offers an increase in security over the preceding level. </li><li>The following functional security objectives:<ul><li>module specification;</li><li>ports and interfaces;</li><li>roles, services and authentication;</li><li>finite state model;</li><li>physical security; </li><li>operational environment;</li><li>cryptographic key management;</li><li>self-tests; </li><li>design assurance;</li><li>mitigation of other attacks.</li></ul></li></ul> <p>ISO/IEC 19790:2006 will be complemented by a future International Standard defining the associated evaluation and test methods.</p> <p>ISO/IEC 19790:2006 is derived from NIST Federal Information Processing Standard PUB 140-2 May 25, 2001. </p> |
| Status | Atcelts |
| ICS group | 35.040 35.030 |