ANSI/X9 X9.97-1-2009

This part of ANS X9.97 specifies the requirements for Secure Cryptographic Devices which incorporate the cryptographic processes defined in ISO 9564, ISO 16609 and ISO 11568.

This part of ANS X9.97 has two primary purposes:

1) to state the requirements concerning both the operational characteristics of SCDs and the management of such devices throughout all stages of their life cycle,

2) to standardize the methodology for verifying compliance with those requirements.

Appropriate device characteristics are necessary to ensure that the device has the proper operational capabilities and provides adequate protection for the data it contains. Appropriate device management is necessary to ensure that the device is legitimate, that it has not been modified in an unauthorized manner, e.g., by bugging, and that any sensitive data placed within the device (e.g., cryptographic keys) has not been subject to disclosure or change.

This product references:ANSI/X9 X9.8-1-2003 - Banking - Personal Identification Number Management and Security - Part 1: PIN protection principles and techniques for online PIN verification in ATM POS systems
ISO 11568-4:2007 - Banking - Key management (retail) - Part 4: Asymmetric cryptosystems - Key management and life cycle
ISO 11568-2:2005 - Banking - Key management (retail) - Part 2: Symmetric ciphers, their key management and life cycle
ISO 11568-1:2005 - Banking - Key management (retail) - Part 1: Principles
ISO 11568-5:1998 - Banking - Key management (retail) - Part 5: Key life cycle for public key cryptosystems
ISO 11568-3:1994 - Banking - Key management (retail) - Part 3: Key life cycle for symmetric ciphers
ISO 16609:2004 - Banking - Requirements for message authentication using symmetric techniques
This product is related to: ANSI/X9 X9.97-2-2009 - Financial services - Secure Cryptographic Devices (Retail) - Part 1: Concepts, Requirements and Evaluation Methods