Banking - Key management (retail) - Part 1: Principles
|Publication Date:||4 September 2007|
|ICS Code (IT applications in banking):||35.240.40|
This part of ISO 11568 specifies the principles for the management of keys used in cipher systems implemented within the retail banking environment. The retail banking environment includes the interface between - a card accepting device and an acquirer, - an acquirer and a card issuer, - an ICC and a card accepting device. An example of this environment is described in annex B, and threats associated with the implementation of this standard in the retail banking environment are elaborated in annex C. This part of ISO 11568 applies both to the keys of symmetric cipher systems, where both originator and recipient use the same secret key(s), and to the private and public keys of asymmetric cipher systems, unless otherwise stated. The procedure for the approval of cryptographic algorithms used for key management is specified in annex A.