ISO 11568-1:2005
Superseded
A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.
View Superseded by
Banking — Key management (retail) — Part 1: Principles
Hardcopy , PDF , PDF 3 Users , PDF 5 Users , PDF 9 Users
17-02-2023
English
17-06-2005
Important note : Users cannot be edited or removed once added to your Multi user PDF.
ISO 11568-1:2005 specifies the principles for the management of keys used in cryptosystems implemented within the retail-banking environment. The retail-banking environment includes the interface between a card accepting device and an acquirer, an acquirer and a card issuer, an ICC and a card-accepting device.
An example of this environment and threats associated with the implementation of ISO 11568-1:2005 in the retail-banking environment are also described.
ISO 11568-1:2005 is applicable both to the keys of symmetric cipher systems, where both originator and recipient use the same secret key(s), and to the private and public keys of asymmetric cryptosystems, unless otherwise stated. The procedure for the approval of cryptographic algorithms used for key management is specified.
The use of ciphers often involves control information other than keys, e.g. initialization vectors and key identifiers. This other information is collectively called "keying material". Although ISO 11568-1:2005 specifically addresses the management of keys, the principles, services, and techniques applicable to keys may also be applicable to keying material.
ISO 11568-1:2005 is appropriate for use by financial institutions and other organizations engaged in the area of retail financial services, where the interchange of information requires confidentiality, integrity, or authentication. Retail financial services include but are not limited to such processes as POS debit and credit authorizations, automated dispensing machine and ATM transactions, etc.
ISO 9564 and ISO 16609 specify the use of cryptographic operations within retail financial transactions for personal identification number (PIN) encipherment and message authentication, respectively. The ISO 11568 series of standards is applicable to the management of the keys introduced by those standards. Additionally, the key management procedures may themselves require the introduction of further keys, e.g. key encipherment keys. The key management procedures are equally applicable to those keys.
| DevelopmentNote |
Supersedes ISO/DIS 11568-1. (06/2005) Also numbered as BIS IS 15256-1. (09/2011)
|
| DocumentType |
Standard
|
| Pages |
16
|
| PublisherName |
International Organization for Standardization
|
| Status |
Superseded
|
| SupersededBy | |
| Supersedes |
| Standards | Relationship |
| DS ISO 11568-1 : 2007 | Identical |
| AS 2805.6.1.1-2009 | Identical |
| NBN EN ISO 11568-1 : 1996 | Identical |
| NEN ISO 11568-1 : 2005 | Identical |
| BS ISO 11568-1:2005 | Identical |
| EN ISO 11568-1 : 1996 | Identical |
| UNE-EN ISO 11568-1:1996 | Identical |
| NF ISO 11568-1 : 1994 | Identical |
| BS EN ISO 11568-1:1996 | Identical |
| UNI EN ISO 11568-1 : 1997 | Identical |
| DIN EN ISO 11568-1:1996-11 | Identical |
| I.S. EN ISO 11568-1:1997 | Identical |
| 11/30231373 DC : 0 | BS ISO 11568-2 - FINANCIAL SERVICES - KEY MANAGEMENT (RETAIL) - PART 2: SYMMETRIC CIPHERS, THEIR KEY MANAGEMENT AND LIFE CYCLE |
| BS ISO 11568-4:2007 | Banking. Key management (retail) Asymmetric cryptosystems. Key management and life cycle |
| BIS IS 15256-4 : 2013 | BANKING - KEY MANAGEMENT (RETAIL) - PART 4: ASYMMETRIC CRYPTOSYSTEMS - KEY MANAGEMENT AND LIFE CYCLE |
| ISO 11568-4:2007 | Banking — Key management (retail) — Part 4: Asymmetric cryptosystems — Key management and life cycle |
| ISO 13491-2:2017 | Financial services — Secure cryptographic devices (retail) — Part 2: Security compliance checklists for devices used in financial transactions |
| 08/30192697 DC : 0 | BS ISO/IEC 9797-1 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - MESSAGE AUTHENTICATION CODES (MACS) - PART 1: MECHANISMS USING A BLOCK CIPHER |
| BS EN ISO 11568-2:1996 | Banking. Key management (retail) Key management techniques for symmetric ciphers |
| ISO 13491-1:2016 | Financial services — Secure cryptographic devices (retail) — Part 1: Concepts, requirements and evaluation methods |
| ISO 13492:2007 | Financial services Key management related data element Application and usage of ISO 8583 data elements 53 and 96 |
| PD ISO/TR 14742:2010 | Financial services. Recommendations on cryptographic algorithms and their use |
| BS ISO 13491-2:2017 | Financial services. Secure cryptographic devices (retail) Security compliance checklists for devices used in financial transactions |
| ISO 11568-3:1994 | Banking Key management (retail) Part 3: Key life cycle for symmetric ciphers |
| ISO 11568-5:1998 | Banking Key management (retail) Part 5: Key life cycle for public key cryptosystems |
| ISO 11568-2:2012 | Financial services — Key management (retail) — Part 2: Symmetric ciphers, their key management and life cycle |
| BS ISO 11568-5:1998 | Banking. Key management (retail) Key life cycle for public key cryptosystems |
| 14/30265615 DC : 0 | BS ISO 13491-1 - BANKING - SECURE CRYPTOGRAPHIC DEVICES (RETAIL) - PART 1: CONCEPTS, REQUIREMENTS AND EVALUATION METHODS |
| BS ISO 10202-7:1998 | Financial transaction cards. Security architecture of financial transaction systems using integrated circuit cards Key management |
| BS EN ISO 11568-3:1996 | Banking. Key management (retail) Key life cycle for symmetric ciphers |
| ANSI X9.112-1 : 2009 | WIRELESS MANAGEMENT AND SECURITY - PART 1: GENERAL REQUIREMENTS |
| ISO 10202-7:1998 | Financial transaction cards Security architecture of financial transaction systems using integrated circuit cards Part 7: Key management |
| ISO 16609:2012 | Financial services — Requirements for message authentication using symmetric techniques |
| BS ISO 16609:2012 | Financial services. Requirements for message authentication using symmetric techniques |
| ANSI X9.112 : 2016 | WIRELESS MANAGEMENT AND SECURITY - PART 1: GENERAL REQUIREMENTS |
| BS ISO 13492:2007 | Financial services. Key management related data element. Application and usage of ISO 8583 data elements 53 and 96 |
| ISO/TR 14742:2010 | Financial services Recommendations on cryptographic algorithms and their use |
| BS ISO 11568-2:2012 | Financial services. Key management (retail) Symmetric ciphers, their key management and life cycle |
| I.S. EN ISO 11568-3:1997 | BANKING - KEY MANAGEMENT (RETAIL) - PART 3: KEY LIFE CYCLE FOR SYMMETRIC CIPHERS |
| I.S. EN ISO 11568-2:1997 | BANKING - KEY MANAGEMENT (RETAIL) - PART 2: KEY MANAGEMENT TECHNIQUES FOR SYMMETRIC CIPHERS |
| EN ISO 11568-2 : 1996 | BANKING - KEY MANAGEMENT (RETAIL) - PART 2: KEY MANAGEMENT TECHNIQUES FOR SYMMETRIC CIPHERS |
| EN ISO 11568-3 : 1996 | BANKING - KEY MANAGEMENT (RETAIL) - PART 3: KEY LIFE CYCLE FOR SYMMETRIC CIPHERS |
| 05/30144066 DC : DRAFT DEC 2005 | ISO 13492 - FINANCIAL SERVICES - KEY MANAGEMENT RELATED DATA ELEMENT - APPLICATION AND USAGE OF ISO 8353 DATA ELEMENTS 53 AND 96 |
| 11/30231411 DC : 0 | BS ISO 16609 - FINANCIAL SERVICES - REQUIREMENTS FOR MESSAGE AUTHENTICATION USING SYMMETRIC TECHNIQUES |
| BS ISO 13491-1:2007 | Banking. Secure cryptographic devices (retail) Concepts, requirements and evaluation methods |
| ISO 11568-6:1998 | Banking Key management (retail) Part 6: Key management schemes |
| ANSI X9.84 : 2010(R2017) | BIOMETRIC INFORMATION MANAGEMENT AND SECURITY FOR THE FINANCIAL SERVICES INDUSTRY |
| ANSI X9.79-4 : 2013 | PUBLIC KEY INFRASTRUCTURE (PKI) - PART 4: ASYMMETRIC KEY MANAGEMENT |
| AS ISO 13491.1:2019 | Financial services - Secure cryptographic devices (retail) Concepts, requirements and evaluation methods |
| ISO 11568-2:2012 | Financial services — Key management (retail) — Part 2: Symmetric ciphers, their key management and life cycle |
| ISO 13491-2:2017 | Financial services — Secure cryptographic devices (retail) — Part 2: Security compliance checklists for devices used in financial transactions |
| ISO/TR 9564-4:2004 | Banking Personal Identification Number (PIN) management and security Part 4: Guidelines for PIN handling in open networks |
| ISO 13491-1:2016 | Financial services — Secure cryptographic devices (retail) — Part 1: Concepts, requirements and evaluation methods |
| AS ISO 13491.2:2019 | Financial services - Secure cryptographic devices (retail) Security compliance checklists for devices used in financial transactions |
| ISO 16609:2012 | Financial services — Requirements for message authentication using symmetric techniques |
| ISO 9564-1:2017 | Financial services — Personal Identification Number (PIN) management and security — Part 1: Basic principles and requirements for PINs in card-based systems |
| ISO 9564-3:2003 | Banking Personal Identification Number management and security Part 3: Requirements for offline PIN handling in ATM and POS systems |
| ISO 9564-2:2014 | Financial services — Personal Identification Number (PIN) management and security — Part 2: Approved algorithms for PIN encipherment |
| ISO 11568-4:2007 | Banking — Key management (retail) — Part 4: Asymmetric cryptosystems — Key management and life cycle |
| AS ISO/IEC 9797.1:2019 | Information technology - Security techniques - Message Authentication Codes (MACs) Mechanisms using a block cipher |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.