UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO TR 14742

Financial services — Recommendations on cryptographic algorithms and their use

active, Most Current
Buy Now
Organization: ISO
Publication Date: 1 July 2010
Status: active
Page Count: 38
ICS Code (IT applications in banking): 35.240.40
ICS Code (Finances. Banking. Monetary systems. Insurance): 03.060
scope:

This Technical Report provides a list of recommended cryptographic algorithms for use within applicable financial services standards prepared by ISO/TC 68. It also provides strategic guidance on key lengths and associated parameters and usage dates.

The focus is on algorithms rather than protocols, and protocols are in general not included in this Technical Report. However, in some cases, for example for some key agreement and some authentication protocols, there is no "underlying" algorithm, and in a sense it is the protocol that constitutes the algorithm. In this case, the mechanisms are included, in particular where they have security parameters that can be adjusted for higher or lower security.

Algorithmic vulnerabilities or cryptographic keys of inadequate lengths are less often the cause of security compromises in the financial industry than are inadequate key management or other procedural flaws, or mistakes in the implementation of cryptographic algorithms or the protocols that use them. However, compromises caused by algorithmic vulnerabilities are more systemic and harder to recover from than other kinds of compromises.

This Technical Report deals primarily with recommendations regarding algorithms and key lengths.

NOTE Key management is covered in ISO 11568-1, ISO 11568-2 and ISO 11568-4.

The categories of algorithms covered in this Technical Report are:

- block ciphers;

- stream ciphers;

- hash functions;

- message authentication codes (MACs);

- asymmetric algorithms:

- digital signature schemes giving message recovery,

- digital signatures with appendix,

- asymmetric ciphers;

- authentication mechanisms;

- key establishment and agreement mechanisms;

- key transport mechanisms.

This Technical Report does not define any cryptographic algorithms; however, the standards to which this Technical Report refers may contain necessary implementation information as well as more detailed guidance regarding choice of security parameters, security analysis, and other implementation considerations.

Document History

ISO TR 14742
July 1, 2010
Financial services — Recommendations on cryptographic algorithms and their use
This Technical Report provides a list of recommended cryptographic algorithms for use within applicable financial services standards prepared by ISO/TC 68. It also provides strategic guidance on key...

References

This document references:
ISO 16609 - Financial services — Requirements for message authentication using symmetric techniques
Published by ISO on March 15, 2012
This International Standard specifies procedures, independent of the transmission process, for protecting the integrity of transmitted banking messages and for verifying that a message has originated...
This document references:
ISO 11568-2 - Financial services — Key management (retail) — Part 2: Symmetric ciphers, their key management and life cycle
Published by ISO on February 1, 2012
This part of ISO 11568 specifies techniques for the protection of symmetric and asymmetric cryptographic keys in a retail banking environment using symmetric ciphers and the life-cycle management of...
This document references:
ISO 9564-2 - Financial services - Personal Identification Number (PIN) management and security - Part 2: Approved algorithms for PIN encipherment
Published by ISO on August 1, 2014
This part of ISO 9564 specifies approved algorithms for the encipherment of Personal Identification Numbers (PINs).
This document references:
ISO TR 19038 - Banking and related financial services Triple DEA Modes of operation Implementation guidelines
Published by ISO on June 15, 2005
A description is not available for this item.
This document references:
ISO 11568-2 - Financial services — Key management (retail) — Part 2: Symmetric ciphers, their key management and life cycle
Published by ISO on February 1, 2012
This part of ISO 11568 specifies techniques for the protection of symmetric and asymmetric cryptographic keys in a retail banking environment using symmetric ciphers and the life-cycle management of...
This document references:
ISO 11568-4 - Banking - Key Management (Retail) - Part 4: Asymmetric cryptosystems — Key management and life cycle
Published by ISO on July 1, 2007
A description is not available for this item.
This document references:
ISO 16609 - Financial services — Requirements for message authentication using symmetric techniques
Published by ISO on March 15, 2012
This International Standard specifies procedures, independent of the transmission process, for protecting the integrity of transmitted banking messages and for verifying that a message has originated...
This document is referenced by:
BS ISO 16609 - Financial services - Requirements for message authentication using symmetric techniques
Published by BSI on August 31, 2022
A description is not available for this item.
This document is referenced by:
ISO TS 12812-2 - Core banking - Mobile financial services - Part 2: Security and data protection for mobile financial services
Published by ISO on March 1, 2017
This document describes and specifies a framework for the management of the security of MFS. It includes — a generic model for the design of the security policy, — a minimum set of security...
This document is referenced by:
BS PD ISO/TS 12812-2 - Core banking — Mobile financial services Part 2: Security and data protection for mobile financial services
Published by BSI on April 30, 2017
A description is not available for this item.
This document is referenced by:
BS ISO/IEC 19896-3 - IT security techniques — Competence requirements for information security testers and evaluators Part 3: Knowledge, skills and effectiveness requirements for ISO/IEC 15408 evaluators
Published by BSI on August 31, 2018
A description is not available for this item.
View Less
View All
Advertisement