BS ISO 13491-1:2016 - Financial services. Secure cryptographic devices (retail). Concepts, requirements and evaluation methods

BS ISO 13491-1:2016

Financial services. Secure cryptographic devices (retail). Concepts, requirements and evaluation methods

Status : Current   Published : March 2016



This part of ISO 13491 specifies the security characteristics for secure cryptographic devices (SCDs) based on the cryptographic processes defined in ISO 9564, ISO 16609, and ISO 11568.

This part of ISO 13491 has two primary purposes:

  • to state the security characteristics concerning both the operational characteristics of SCDs and the management of such devices throughout all stages of their life cycle;

  • to provide guidance for methodologies to verify compliance with those requirements. This information is contained in Annex A.

ISO 13491‑2 specifies checklists to be used to evaluate secure cryptographic devices (SCDs) incorporating cryptographic processes as specified in ISO 9564‑1, ISO 9564‑2, ISO 16609, ISO 11568‑1, ISO 11568‑2, ISO 11568‑3, ISO 11568‑4, ISO 11568‑5, and ISO 11568‑6 in the financial services environment.

Annex A provides an informative illustration of the concepts of security levels described in this part of ISO 13491 as being applicable to SCDs.

This part of ISO 13491 does not address issues arising from the denial of service of an SCD.

Specific requirements for the security characteristics and management of specific types of SCD functionality used in the retail financial services environment are contained in ISO 13491‑2.

Standard NumberBS ISO 13491-1:2016
TitleFinancial services. Secure cryptographic devices (retail). Concepts, requirements and evaluation methods
Publication Date31 March 2016
Normative References(Required to achieve compliance to this standard)ISO 11568-1, ISO 11568-2, ISO 11568-4
Informative References(Provided for Information)ISO 9564-1, ISO 9564-2, ISO 13491-2:2005, ISO 16609, ISO/IEC 15408, ISO/IEC 17025, ISO/IEC 19790
ReplacesBS ISO 13491-1:2007
International RelationshipsISO 13491-1:2016
Draft Superseded By14/30265615 DC
DescriptorsBanks, Financial institutions, Finance, Retailing, Data security, Data storage protection, Cryptography, Data processing, Banking documents, Information exchange, Management operations, Performance, Verification, Production, Quality assurance, Quality control, Conformity
Title in FrenchServices financiers. Dispositifs cryptographiques de sécurité (services aux particuliers). Concepts, exigences et méthodes d’évaluation
ISBN978 0 580 79378 3
File Size1.511 MB

 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


The faster, easier way to work with standards

Develop a PAS

Develop a fast-track standardization document in 9-12 months

Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version