ISO 11568-1:2005

Superseded

View Superseded by

Banking — Key management (retail) — Part 1: Principles

Available format(s)

Hardcopy , PDF , PDF 3 Users , PDF 5 Users , PDF 9 Users

Superseded date

02-17-2023

Language(s)

English

Published date

06-17-2005

Publisher

International Organization for Standardization

ISO 11568-1:2005 specifies the principles for the management of keys used in cryptosystems implemented within the retail-banking environment. The retail-banking environment includes the interface between a card accepting device and an acquirer, an acquirer and a card issuer, an ICC and a card-accepting device.

An example of this environment and threats associated with the implementation of ISO 11568-1:2005 in the retail-banking environment are also described.

ISO 11568-1:2005 is applicable both to the keys of symmetric cipher systems, where both originator and recipient use the same secret key(s), and to the private and public keys of asymmetric cryptosystems, unless otherwise stated. The procedure for the approval of cryptographic algorithms used for key management is specified.

The use of ciphers often involves control information other than keys, e.g. initialization vectors and key identifiers. This other information is collectively called "keying material". Although ISO 11568-1:2005 specifically addresses the management of keys, the principles, services, and techniques applicable to keys may also be applicable to keying material.

ISO 11568-1:2005 is appropriate for use by financial institutions and other organizations engaged in the area of retail financial services, where the interchange of information requires confidentiality, integrity, or authentication. Retail financial services include but are not limited to such processes as POS debit and credit authorizations, automated dispensing machine and ATM transactions, etc.

ISO 9564 and ISO 16609 specify the use of cryptographic operations within retail financial transactions for personal identification number (PIN) encipherment and message authentication, respectively. The ISO 11568 series of standards is applicable to the management of the keys introduced by those standards. Additionally, the key management procedures may themselves require the introduction of further keys, e.g. key encipherment keys. The key management procedures are equally applicable to those keys.

DevelopmentNote	Supersedes ISO/DIS 11568-1. (06/2005) Also numbered as BIS IS 15256-1. (09/2011)
DocumentType	Standard
Pages	16
PublisherName	International Organization for Standardization
Status	Superseded
SupersededBy	ISO 11568:2023
Supersedes	ISO 11568-1:1994

Standards	Relationship
DS ISO 11568-1 : 2007	Identical
AS 2805.6.1.1-2009	Identical
NBN EN ISO 11568-1 : 1996	Identical
NEN ISO 11568-1 : 2005	Identical
BS ISO 11568-1:2005	Identical
EN ISO 11568-1 : 1996	Identical
UNE-EN ISO 11568-1:1996	Identical
NF ISO 11568-1 : 1994	Identical
BS EN ISO 11568-1:1996	Identical
UNI EN ISO 11568-1 : 1997	Identical
DIN EN ISO 11568-1:1996-11	Identical
I.S. EN ISO 11568-1:1997	Identical

11/30231373 DC : 0	BS ISO 11568-2 - FINANCIAL SERVICES - KEY MANAGEMENT (RETAIL) - PART 2: SYMMETRIC CIPHERS, THEIR KEY MANAGEMENT AND LIFE CYCLE
BS ISO 11568-4:2007	Banking. Key management (retail) Asymmetric cryptosystems. Key management and life cycle
BIS IS 15256-4 : 2013	BANKING - KEY MANAGEMENT (RETAIL) - PART 4: ASYMMETRIC CRYPTOSYSTEMS - KEY MANAGEMENT AND LIFE CYCLE
ISO 11568-4:2007	Banking — Key management (retail) — Part 4: Asymmetric cryptosystems — Key management and life cycle
ISO 13491-2:2017	Financial services — Secure cryptographic devices (retail) — Part 2: Security compliance checklists for devices used in financial transactions
08/30192697 DC : 0	BS ISO/IEC 9797-1 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - MESSAGE AUTHENTICATION CODES (MACS) - PART 1: MECHANISMS USING A BLOCK CIPHER
BS EN ISO 11568-2:1996	Banking. Key management (retail) Key management techniques for symmetric ciphers
ISO 13491-1:2016	Financial services Secure cryptographic devices (retail) Part 1: Concepts, requirements and evaluation methods
ISO 13492:2007	Financial services Key management related data element Application and usage of ISO 8583 data elements 53 and 96
PD ISO/TR 14742:2010	Financial services. Recommendations on cryptographic algorithms and their use
BS ISO 13491-2:2017	Financial services. Secure cryptographic devices (retail) Security compliance checklists for devices used in financial transactions
ISO 11568-3:1994	Banking Key management (retail) Part 3: Key life cycle for symmetric ciphers
ISO 11568-5:1998	Banking Key management (retail) Part 5: Key life cycle for public key cryptosystems
ISO 11568-2:2012	Financial services — Key management (retail) — Part 2: Symmetric ciphers, their key management and life cycle
BS ISO 11568-5:1998	Banking. Key management (retail) Key life cycle for public key cryptosystems
14/30265615 DC : 0	BS ISO 13491-1 - BANKING - SECURE CRYPTOGRAPHIC DEVICES (RETAIL) - PART 1: CONCEPTS, REQUIREMENTS AND EVALUATION METHODS
BS ISO 10202-7:1998	Financial transaction cards. Security architecture of financial transaction systems using integrated circuit cards Key management
BS EN ISO 11568-3:1996	Banking. Key management (retail) Key life cycle for symmetric ciphers
ANSI X9.112-1 : 2009	WIRELESS MANAGEMENT AND SECURITY - PART 1: GENERAL REQUIREMENTS
ISO 10202-7:1998	Financial transaction cards Security architecture of financial transaction systems using integrated circuit cards Part 7: Key management
ISO 16609:2012	Financial services — Requirements for message authentication using symmetric techniques
BS ISO 16609:2012	Financial services. Requirements for message authentication using symmetric techniques
ANSI X9.112 : 2016	WIRELESS MANAGEMENT AND SECURITY - PART 1: GENERAL REQUIREMENTS
BS ISO 13492:2007	Financial services. Key management related data element. Application and usage of ISO 8583 data elements 53 and 96
ISO/TR 14742:2010	Financial services Recommendations on cryptographic algorithms and their use
BS ISO 11568-2:2012	Financial services. Key management (retail) Symmetric ciphers, their key management and life cycle
I.S. EN ISO 11568-3:1997	BANKING - KEY MANAGEMENT (RETAIL) - PART 3: KEY LIFE CYCLE FOR SYMMETRIC CIPHERS
I.S. EN ISO 11568-2:1997	BANKING - KEY MANAGEMENT (RETAIL) - PART 2: KEY MANAGEMENT TECHNIQUES FOR SYMMETRIC CIPHERS
EN ISO 11568-2 : 1996	BANKING - KEY MANAGEMENT (RETAIL) - PART 2: KEY MANAGEMENT TECHNIQUES FOR SYMMETRIC CIPHERS
EN ISO 11568-3 : 1996	BANKING - KEY MANAGEMENT (RETAIL) - PART 3: KEY LIFE CYCLE FOR SYMMETRIC CIPHERS
05/30144066 DC : DRAFT DEC 2005	ISO 13492 - FINANCIAL SERVICES - KEY MANAGEMENT RELATED DATA ELEMENT - APPLICATION AND USAGE OF ISO 8353 DATA ELEMENTS 53 AND 96
11/30231411 DC : 0	BS ISO 16609 - FINANCIAL SERVICES - REQUIREMENTS FOR MESSAGE AUTHENTICATION USING SYMMETRIC TECHNIQUES
BS ISO 13491-1:2007	Banking. Secure cryptographic devices (retail) Concepts, requirements and evaluation methods
ISO 11568-6:1998	Banking Key management (retail) Part 6: Key management schemes

AS ISO 13491.1:2019	Financial services - Secure cryptographic devices (retail) Concepts, requirements and evaluation methods
ISO 11568-2:2012	Financial services — Key management (retail) — Part 2: Symmetric ciphers, their key management and life cycle
ISO 13491-2:2017	Financial services — Secure cryptographic devices (retail) — Part 2: Security compliance checklists for devices used in financial transactions
ISO/TR 9564-4:2004	Banking Personal Identification Number (PIN) management and security Part 4: Guidelines for PIN handling in open networks
ISO 13491-1:2016	Financial services Secure cryptographic devices (retail) Part 1: Concepts, requirements and evaluation methods
AS ISO 13491.2:2019	Financial services - Secure cryptographic devices (retail) Security compliance checklists for devices used in financial transactions
ISO 16609:2012	Financial services — Requirements for message authentication using symmetric techniques
ISO 9564-1:2017	Financial services — Personal Identification Number (PIN) management and security — Part 1: Basic principles and requirements for PINs in card-based systems
ISO 9564-3:2003	Banking Personal Identification Number management and security Part 3: Requirements for offline PIN handling in ATM and POS systems
ISO 9564-2:2014	Financial services — Personal Identification Number (PIN) management and security — Part 2: Approved algorithms for PIN encipherment
ISO 11568-4:2007	Banking — Key management (retail) — Part 4: Asymmetric cryptosystems — Key management and life cycle
AS ISO/IEC 9797.1:2019	Information technology - Security techniques - Message Authentication Codes (MACs) Mechanisms using a block cipher

View more information

US$73.00

Excluding Tax where applicable

Product format

I agree to the DRM document license rules apply against the PDF selection made.

Please confirm that you agree to the document license rules for this document.

I agree to the document license rules .

Please confirm that you agree to the document license rules for this document.

Access your standards online with a subscription

Features

Simple online access to standards, technical information and regulations.
Critical updates of standards and customisable alerts and notifications.
Multi-user online standards collection: secure, flexible and cost effective.

Learn more on subscription solutions

Get in touch with us

Log into your Account

ISO 11568-1:2005

Superseded

Abstract

General Product Information

International Equivalents

Standards Referenced By This Book

Standards Referencing This Book

Category

Subcategory

Access your standards online with a subscription