Abstract
ISO/IEC 19790:2012 the security requirements for a cryptographic module utilised within a security system protecting sensitive information in computer and telecommunication systems. This International Standard defines four security levels for cryptographic modules to provide for a wide spectrum of data sensitivity (e.g. low value administrative data, million dollar funds transfers, life protecting data, personal identity information, and sensitive information used by government) and a diversity of application environments (e.g. a guarded facility, an office, removable media, and a completely unprotected location). This International Standard specifies four security levels for each of 11 requirement areas with each security level increasing security over the preceding level.
ISO/IEC 19790:2012 specifies security requirements specifically intended to maintain the security provided by a cryptographic module and compliance with this International Standard is not sufficient to ensure that a particular module is secure or that the security provided by the module is sufficient and acceptable to the owner of the information that is being protected.
General information
-
Status: PublishedPublication date: 2012-08
Corrected version (en): 2015-11Stage: International Standard to be revised [90.92] -
Edition: 2Number of pages: 72
-
Technical Committee :ISO/IEC JTC 1/SC 27ICS :35.030
- RSS updates
Read sample
Life cycle
-
Previously
WithdrawnISO/IEC 19790:2006
WithdrawnISO/IEC 19790:2006/Cor 1:2008
-
Now
-
00
Preliminary
-
10
Proposal
-
20
Preparatory
-
30
Committee
-
40
Enquiry
-
50
Approval
-
60
Publication
-
90
Review
-
95
Withdrawal
Corrigenda / Amendments
WithdrawnISO/IEC 19790:2012/Cor 1:2015
-
00
-
Will be replaced by
Under developmentISO/IEC DIS 19790
Got a question?
Check out our FAQs
Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)