한국표준정보망

회원가입 로그인 비회원(주문조회) 장바구니 이용안내

English
메뉴
검색 마이페이지 장바구니0

QUICK

닫기

TOP

해외표준 상세정보

관심표준 등록 : 표준업데이트 시 알림서비스

제공형태 더보기

  • subList_img01

    표준

    판매

    ISO/IEC TS 20540:2018

    Information technology — Security techniques — Testing cryptographic modules in their operational environment
    • 발행일 : 2018-05-18
    • 발행기관 : ISO/IEC
    즐겨찾기 장바구니 담기
    닫기

    상품이 장바구니에 담겼습니다.

    장바구니로 이동

    • [영어]PDF 307,700원

    • [영어]PRINT 307,700원

상세정보

분야 ISO/IEC JTC 1/SC 27 : Information security, cybersecurity and privacy protection
적용범위

This document provides recommendations and checklists which can be used to support the specification and operational testing of cryptographic modules in their operational environment within an organization's security system.

The cryptographic modules have four security levels which ISO/IEC 19790 defines to provide for a wide spectrum of data sensitivity (e.g. low-value administrative data, million-dollar funds transfers, life-protecting data, personal identity information, and sensitive information used by government) and a diversity of application environments (e.g. a guarded facility, an office, removable media, and a completely unprotected location).

This document includes:

a) recommendations to perform secure assessing for cryptographic module installation, configuration and operation;

b) recommendations to inspecting the key management system, protection of authentication credentials, and public and critical security parameters in the operational environment;

c) recommendations for identifying cryptographic module vulnerabilities;

d) checklists for the cryptographic algorithm policy, security guidance and regulation, security manage requirements, security level for each of the 11 requirement areas, the strength of the security function, etc.; and

e) recommendations to determine that the cryptographic module's deployment satisfies the security requirements of the organization.

This document assumes that the cryptographic module has been validated as conformant with ISO/IEC 19790.

It can be used by an operational tester along with other recommendations if needed.

This document is limited to the security related to the cryptographic module. It does not include assessing the security of the operational or application environment. It does not define techniques for the identification, assessment and acceptance of the organization's operational risk.

The organization's accreditation, deployment and operation processes, shown in Figure 1, is not included to the scope of this document.

This document addresses operational testers who perform the operational testing for the cryptographic modules in their operational environment authorizing officials of cryptographic modules.
국제분류(ICS)코드 35.030 : IT 보안
페이지수 39
Edition 1

이력정보

No. 표준번호 표준명 발행일 상태
1 ISO/IEC TS 20540:2018상세보기 Information technology - Security techniques - Testing cryptographic modules in their operational environment 2018-05-18 표준
2 ISO/IEC TS 20540:2018상세보기 Information technology — Security techniques — Testing cryptographic modules in their operational environment 2018-05-18 표준
3 ISO/IEC TS 20540상세보기 Information security, cybersecurity and privacy protection — Testing cryptographic modules in their field 초안

관련상품

  • 관련상품이 존재하지 않습니다.

다른 사람이 함께 구입한 상품

추천 상품

제공형태 닫기

  • PDF :

    직접 파일 다운로드 및 인쇄(마이페이지 확인)

  • 보안PDF :

    직접 파일 다운로드 및 인쇄(마이페이지 확인)* 단, 파일이동 및 복사 불가, 1회 다운로드 및 인쇄가능

  • PRINT :

    인쇄본 우편발송, 2~3일 소요(PDF파일 미제공)

  • BOOK :

    인쇄본 우편발송, 2~3일 소요(PDF파일 미제공)

  • ZIP :

    압축파일형태로 제공 (PDF, HTML, TXT, XLS 등으로 구성), 직접 파일 다운로드(마이페이지 확인)

  • CD/DVD :

    직접 파일 다운로드 및 인쇄(마이페이지 확인)

  • DB :

    별도 정보 제공

  • HARDCOPY :

    해외 배송 상품, 최대 3주 소요

  • 바인더 :

    바인더 우편발송, 2~3일 소요

  • 온라인구독 :

    WEB 접속 후 실시간 열람, 출력(1년간)