ASC/X9 - ANSI X9.69
Framework for Key Management Extensions
|Publication Date:||19 September 2017|
This Standard defines methods for the generation and control of keys used in symmetric cryptographic algorithms. The Standard defines a constructive method for the creation of symmetric keys, by combining two or more secret key components. The Standard also defines a method for attaching a key usage vector to each generated key that prevents abuses and attacks against the key. The two defined methods can be used separately or in combination.
The Standard does not cover aspects of key management, such as:
- Key establishment mechanisms;
See for example ANSI X9.24 Financial Institution Retail Key Management, or ISO/IEC 11770-2, Key Management, Part 2: Mechanisms using symmetric techniques.
- Mechanisms to store, archive, delete, destroy, etc. keys;
- Mechanisms for key recovery in the event of the failure or loss of keys.
The Standard also does not define the implementation of key management mechanisms; there may be different products that comply with this Standard and yet are not interoperable.