GB/T 20547.2-2006 Replaced National standards

GB/T 20547.2-2006 Banking—Secure cryptographic devices (retail)—Part 2:Security compliance checklists for devices used in financial transactions

Publish Date: 2006-09-18 Implement Date: 2007-03-01 For services related to genuine standard inquiry, procurement, translation, and other related services in China, please Contact Us

Basic Information

Standard Code: GB/T 20547.2-2006

Standard Type: National standards

Standard Status: Replaced

is_force_gb: no

CCS Name: Finance, insurance

ICS Name: The application of information technology in banks

Publish Date: 2006-09-18

Implement Date: 2007-03-01

Pages: 29 pages

Scope

This part of GB/T 20547 specifies the security conformity test list for secure encryption devices in financial service systems, taking into account the encryption algorithms used by encryption devices as stipulated in relevant international or domestic regulations. IC payment cards should comply with the requirements of this part before issuance, but after issuance, they are not subject to the scope of this part as personal devices. This part does not address issues arising from failures of secure encryption devices. In Appendices A to H, "infeasible" is used to indicate that although certain specific attacks are technically possible, they are economically infeasible, as the economic cost required to implement such attacks is much greater than the benefits gained after the attack. Of course, in addition to attacks for pure economic gain, malicious attacks aimed at reputation should also be considered.