Cryptography publications

The publications listed in this topic describe cryptographic standards, research, and practices relevant to the coprocessor.

• Accredited Standards Committee X9, Inc.: X9 TR-31 2018: Interoperable Secure Key Exchange Block Specification for Symmetric Algorithms.
• American National Standards Institute (ANSI). ANSI is the official U.S. representative to the International Organization for Standardization (ISO) and, via the U.S. National Committee, the International Electrotechnical Commission (IEC). ANSI is also a member of the International Accreditation Forum (IAF).
  • ANSI X9.24-1:2017 Retail Financial Services Symmetric Key Management Part 1: Using Symmetric Techniques.
  • ANSI X9.24-2:2016 Retail Financial Services Symmetric Key Management Part 2: Using Asymmetric Techniques for the Distribution of Symmetric Keys.
  • ANSI X9.62:2005 Public Key Cryptography for the Financial Services Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA).
  • ANSI X9.102:2020 Symmetric Key Cryptography for the Financial Services Industry -- Wrapping of Keys and Associated Data.
• ECC Brainpool Standard Curves and Curve Generation, v.1.0, October 19, 2005
• Elliptic Curve Cryptography (ECC) Brainpool Standard Curves and Curve Generation. (RFC 5639), Manfred Lochter and Johannes Merkle, IETF Trust, March 2010. Available at
• Federal Information Processing Standards (FIPS), issued by the U.S. National Institute of Standards and Technology (NIST, see http://www.nist.gov/itl/). The listed FIPS publications are available from this web site: Computer Security Resource Center.
  • FIPS PUB 140-2 Security Requirements for Cryptographic Modules, May, 2001.
  • FIPS PUB 180-4 Secure Hash Standard (SHS), May, 2012.
  • FIPS PUB 186-4 Digital Signature Standard (DSS), July, 2013.
  • FIPS PUB 197 Advanced Encryption Standard (AES), November, 2001.
  • FIPS PUB 198-1 The Keyed-Hash Message Authentication Code (HMAC), July, 2008.
• International Organization for Standardization (ISO). ISO is the world's largest developer and publisher of International Standards. ISO is a network of the national standards institutes of many countries, one member per country, with a Central Secretariat in Geneva, Switzerland, that coordinates the system.
  • ISO 16609:2004 Banking -- Requirements for Message Authentication Using Symmetric Techniques.
  • ISO/DIS 9564-1 Financial Services -- Personal Identification Number (PIN) Management and Security -- Part 1: Basic Principles and Requirements for PINs in Card-Based Systems.
  • ISO 9564-4:2016 Financial services -- Personal Identification Number (PIN) management and security -- Part 4: Requirements for PIN handling in eCommerce for Payment Transactions
  • ISO 20038:2017 Banking and related financial services -- Key wrap using AES
• National Institute of Standards and Technology (NIST) Special Publications (SP), U.S. Dept. of Commerce
  • NIST SP 800-38D Recommendation for Block Cipher Modes of Operation: Galois/Counter Mode (GCM) and GMAC, November 2007. Available at http://csrc.nist.gov/publications/nistpubs/800-38D/SP-800-38D.pdf.
  • NIST SP 800-38A Recommendation for Block Cipher Modes of Operations: Methods and Techniques, 2001 Edition. Available at http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf.
  • NIST SP 800-38B Recommendation for Block Cipher Modes of Operation: The CMAC Mode for Authentication, May 2005. Available at: https://csrc.nist.gov/publications/detail/sp/800-38b/final.
  • NIST SP 800-56A Recommendation for Pair-Wise Key Establishment Schemes Using Discrete Logarithm Cryptography (Revision 3). Available at https://doi.org/10.6028/NIST.SP.800-56Ar3.
  • NIST SP 800-90A Revision 1 Recommendation for Random Number Generation Using Deterministic Random Bit Generators, June 2015. Available at: http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf.
  • NIST SP 800-108 Recommendation for Key Derivation Using Pseudorandom Functions (Revised), October 2009 Edition. Available at: http://csrc.nist.gov/publications/nistpubs/800-108/sp800-108.pdf.
  • The NIST SP 800-90A Deterministic Random Bit Generator Validation System (DRBGVS), updated: October 29, 2015. Available at: http://csrc.nist.gov/groups/STM/cavp/documents/drbg/DRBGVS.pdf.
• OASIS Standards

  • PKCS #11 Cryptographic Token Interface Base Specification Version 3.0

  • PKCS #11 Cryptographic Token Interface Profiles Version 3.0

  • PKCS #11 Cryptographic Token Interface Current Mechanisms Specification Version 3.0

  • PKCS #11 Cryptographic Token Interface Historical Mechanisms Specification Version 3.0

• Visa Integrated Circuit Card Specification (VIS) Version 1.5, Visa International Service Association and Visa Inc. Available at https://www.scribd.com/doc/87334890/Visa-VIS-Specification-15-May-2009.