ISO 11568:2023
ISO 11568:2023 Financial services – Key management (retail)
CDN $422.00
Description
This document describes the management of symmetric and asymmetric cryptographic keys that can be used to protect sensitive information in financial services related to retail payments. The document covers all aspects of retail financial services, including connections between a card-accepting device and an Acquirer, between an Acquirer and a card Issuer, and between an ICC and a card-accepting device. It covers all phases of the key life cycle, including the generation, distribution, utilization, archiving, replacement and destruction of the keying material. This document covers manual and automated management of keying material, and any combination thereof, used for retail financial services. It includes guidance and requirements related to key separation, substitution prevention, identification, synchronization, integrity, confidentiality and compromise, as well as logging and auditing of key management events.
Requirements associated with hardware used to manage keys have also been included in this document.
Edition
1
Published Date
2023-02-17
Status
PUBLISHED
Pages
115
Language
English
Format
Secure PDF
Secure – PDF details
- Save your file locally or view it via a web viewer
- Viewing permissions are restricted exclusively to the purchaser
- Device limits - 3
- Printing – Enabled only to print (1) copy
See more about our Environmental Commitment
Abstract
This document describes the management of symmetric and asymmetric cryptographic keys that can be used to protect sensitive information in financial services related to retail payments. The document covers all aspects of retail financial services, including connections between a card-accepting device and an Acquirer, between an Acquirer and a card Issuer, and between an ICC and a card-accepting device. It covers all phases of the key life cycle, including the generation, distribution, utilization, archiving, replacement and destruction of the keying material. This document covers manual and automated management of keying material, and any combination thereof, used for retail financial services. It includes guidance and requirements related to key separation, substitution prevention, identification, synchronization, integrity, confidentiality and compromise, as well as logging and auditing of key management events.
Requirements associated with hardware used to manage keys have also been included in this document.
Previous Editions
Can’t find what you are looking for?
Please contact us at:
Related Documents
-
ISO 22126:2023 Financial services – Semantic technology – Part 3: Semantic enrichment of the ISO 20022 conceptual model
CDN $124.00 Add to cart -
ISO 23258:2021 Blockchain and distributed ledger technologies – Taxonomy and Ontology
CDN $295.00 Add to cart -
ISO 23249:2022 Blockchain and distributed ledger technologies – Overview of existing DLT systems for identity management
CDN $336.00 Add to cart -
ISO 13491:2023 Financial services – Secure cryptographic devices (retail) – Part 2: Security compliance checklists for devices used in financial transactions
CDN $336.00 Add to cart
