BS ISO 11568-1:2005 - Banking. Key management (retail). Principles – BSI British Standards

BS ISO 11568-1:2005

Banking. Key management (retail). Principles

Status : Current, Project Underway   Published : September 2005



This part of ISO 11568 specifies the principles for the management of keys used in cryptosystems implemented within the retail banking environment. The retail banking environment includes the interface between

  • a card accepting device and an acquirer
  • an acquirer and a card issuer
  • an ICC and a card-accepting device.

An example of this environment is described in Annex B, and threats associated with the implementation of this part of ISO 11568 in the retail banking environment are elaborated in Annex C.

This part of ISO 11568 is applicable both to the keys of symmetric cipher systems, where both originator and recipient use the same secret key(s), and to the private and public keys of asymmetric cryptosystems, unless otherwise stated. The procedure for the approval of cryptographic algorithms used for key management is specified in Annex A.

The use of ciphers often involves control information other than keys, e.g. initialization vectors and key identifiers. This other information is collectively called “keying material”. Although this part of ISO 11568 specifically addresses the management of keys, the principles, services, and techniques applicable to keys may also be applicable to keying material.

This part of ISO 11568 is appropriate for use by financial institutions and other organizations engaged in the area of retail financial services, where the interchange of information requires confidentiality, integrity, or authentication. Retail financial services include but are not limited to such processes as POS debit and credit authorizations, automated dispensing machine and ATM transactions, etc.

ISO 9564 and ISO 16609 specify the use of cryptographic operations within retail financial transactions for personal identification number (PIN) encipherment and message authentication, respectively. The ISO 11568 series of standards is applicable to the management of the keys introduced by those standards. Additionally, the key management procedures may themselves require the introduction of further keys, e.g. key encipherment keys. The key management procedures are equally applicable to those keys.

Standard NumberBS ISO 11568-1:2005
TitleBanking. Key management (retail). Principles
StatusCurrent, Project Underway
Publication Date09 September 2005
Normative References(Required to achieve compliance to this standard)ISO 11568-4:1998, ISO 11568-2:1994
Informative References(Provided for Information)ISO 9564-2:2005, ISO/TR 9564-4:2004, ISO 9564-3:2003, ISO 13491-2:2005, ISO 9564-1:2002, ISO 16609:2004, ISO 13491-1:1998
International RelationshipsISO 11568-1:2005
Draft Superseded By03/319904 DC
DescriptorsKeys (cryptographic), Information exchange, Acceptance (approval), Messages, Credit cards, Algorithms, Banks, Coding (data conversion), Identity cards, Data security, Cryptography, Finance, Data storage protection, Management
Title in FrenchBanque. Gestion de cles (services aux particuliers). Principes
Title in GermanBankwesen. Schluesselverwaltung (Einzelhandel). Einfuehrung in die Schluesselverwaltung
ISBN0 580 46462 8
File Size857 KB

 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents

Worldwide Standards
We can source any standard from anywhere in the world


The faster, easier way to work with standards

Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version

Customers who bought this product also bought

  • BS ISO 11568-4:2007
    Banking. Key management (retail) Asymmetric cryptosystems. Key management and life cycle