|
URL:
http://csrc.nist.gov/cryptval/140-2.htm
http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf
Accredited Cryptographic Modules Testing (CMT)
laboratories perform validation testing of cryptographic modules: devices that
perform encryption, decryption, authentication etc. Cryptographic modules are
tested against requirements found in FIPS PUB 140-2, Security Requirements for
Cryptographic Modules [PDF]. These security requirements cover 11 areas related
to the design and implementation of a cryptographic module. Within most areas,
a cryptographic module receives a security level rating (1-4, from lowest to
highest), depending on what requirements are met. For instance, a lower rating
may indicate that a device will show evidence that it has been tampered with,
while a higher rating may indicate the device is resistant to tampering. For
other areas that do not provide for different levels of security, a cryptographic
module receives a rating that reflects fulfillment of all of the requirements
for that area.
Keywords:
security, physical layer, standard, encryption
|
