Standard Swedish standard · SS-ISO/IEC 19790:2006

Information Technology - Security Techniques - Security requirements for cryptographic modules (ISO/IEC 19790:2006, IDT)

Status: Valid

Scope
This International Standard specifies the security requirements for a cryptographic module utilized within a security system protecting sensitive information in computer and telecommunication systems. This International Standard defines four security levels for cryptographic modules to provide for a wide spectrum of data sensitivity (e.g., low value administrative data, million dollar funds transfers, and life protecting data) and a diversity of application environments (e.g., a guarded facility, an office, and a completely unprotected location). Four security levels are specified for each of 10 requirement areas. Each security level offers an increase in security over the preceding level. While the security requirements specified in this International Standard are intended to maintain the security provided by a cryptographic module, compliance to this International Standard is not sufficient to ensure that a particular module is secure or that the security provided by the module is sufficient and acceptable to the owner of the information that is being protected.

Subjects

Information technology service management IT Security Information coding


Product information

Language: English

Written by: SIS - Ledningssystem

International title: Information Technology - Security Techniques - Security requirements for cryptographic modules (ISO/IEC 19790:2006, IDT)

Article no: STD-44979

Edition: 1

Approved: 4/7/2006

No of pages: 55