ISO 9564-1-2011 金融服务.个人识别号(PIN)管理与安全.第1部分:以卡为基础的系统中个人识别码的基本原则和要求
作者:标准资料网 时间:2024-04-28 13:55:02 浏览:9892
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:Financialservices-PersonalIdentificationNumber(PIN)managementandsecurity-Part1:BasicprinciplesandrequirementsforPINsincard-basedsystems
【原文标准名称】:金融服务.个人识别号(PIN)管理与安全.第1部分:以卡为基础的系统中个人识别码的基本原则和要求
【标准号】:ISO9564-1-2011
【标准状态】:现行
【国别】:国际
【发布日期】:2011-02-15
【实施或试行日期】:2011-02-15
【发布单位】:国际标准化组织(IX-ISO)
【起草单位】:ISO/TC68
【标准类型】:()
【标准水平】:()
【中文主题词】:
【英文主题词】:Algorithms;Asynchronoustransfermode;ATM;Bankaccounts;Bankoperations;Banks;Codedrepresentation;Dataexchange;Dataprotection;Datasecurity;Definitions;Identification;Identificationmethods;Identificationnumbers;Marking;PIN;Registrationnumber;Safety
【摘要】:ThispartofISO9564specifiesthebasicprinciplesandtechniqueswhichprovidetheminimumsecuritymeasuresrequiredforeffectiveinternationalPINmanagement.ThesemeasuresareapplicabletothoseinstitutionsresponsibleforimplementingtechniquesforthemanagementandprotectionofPINsduringtheircreation,issuance,usageanddeactivation.ThispartofISO9564isapplicabletothemanagementofcardholderPINsforuseasameansofcardholderverificationinretailbankingsystemsin,notably,automatedtellermachine(ATM)systems,point-of-sale(POS)terminals,automatedfueldispensers,vendingmachines,bankingkiosksandPINselection/changesystems.Itisapplicabletoissuerandinterchangeenvironments.TheprovisionsofthispartofISO9564arenotintendedtocover:a)PINmanagementandsecurityinenvironmentswherenopersistentcryptographicrelationshipexistsbetweenthetransaction-originationdeviceandtheacquirer,e.g.useofabrowserforonlineshopping(fortheseenvironments,seeISO/TR9564-4);b)protectionofthePINagainstlossorintentionalmisusebythecustomer;c)privacyofnon-PINtransactiondata;d)protectionoftransactionmessagesagainstalterationorsubstitution;e)protectionagainstreplayofthePINortransaction;f)specifickeymanagementtechniques;g)offlinePINverificationusedincontactlessdevices;h)requirementsspecificallyassociatedwithPINmanagementasitrelatestomulti-applicationfunctionalityinICcards.
【中国标准分类号】:A11
【国际标准分类号】:35_240_40
【页数】:36P.;A4
【正文语种】:英语
【原文标准名称】:金融服务.个人识别号(PIN)管理与安全.第1部分:以卡为基础的系统中个人识别码的基本原则和要求
【标准号】:ISO9564-1-2011
【标准状态】:现行
【国别】:国际
【发布日期】:2011-02-15
【实施或试行日期】:2011-02-15
【发布单位】:国际标准化组织(IX-ISO)
【起草单位】:ISO/TC68
【标准类型】:()
【标准水平】:()
【中文主题词】:
【英文主题词】:Algorithms;Asynchronoustransfermode;ATM;Bankaccounts;Bankoperations;Banks;Codedrepresentation;Dataexchange;Dataprotection;Datasecurity;Definitions;Identification;Identificationmethods;Identificationnumbers;Marking;PIN;Registrationnumber;Safety
【摘要】:ThispartofISO9564specifiesthebasicprinciplesandtechniqueswhichprovidetheminimumsecuritymeasuresrequiredforeffectiveinternationalPINmanagement.ThesemeasuresareapplicabletothoseinstitutionsresponsibleforimplementingtechniquesforthemanagementandprotectionofPINsduringtheircreation,issuance,usageanddeactivation.ThispartofISO9564isapplicabletothemanagementofcardholderPINsforuseasameansofcardholderverificationinretailbankingsystemsin,notably,automatedtellermachine(ATM)systems,point-of-sale(POS)terminals,automatedfueldispensers,vendingmachines,bankingkiosksandPINselection/changesystems.Itisapplicabletoissuerandinterchangeenvironments.TheprovisionsofthispartofISO9564arenotintendedtocover:a)PINmanagementandsecurityinenvironmentswherenopersistentcryptographicrelationshipexistsbetweenthetransaction-originationdeviceandtheacquirer,e.g.useofabrowserforonlineshopping(fortheseenvironments,seeISO/TR9564-4);b)protectionofthePINagainstlossorintentionalmisusebythecustomer;c)privacyofnon-PINtransactiondata;d)protectionoftransactionmessagesagainstalterationorsubstitution;e)protectionagainstreplayofthePINortransaction;f)specifickeymanagementtechniques;g)offlinePINverificationusedincontactlessdevices;h)requirementsspecificallyassociatedwithPINmanagementasitrelatestomulti-applicationfunctionalityinICcards.
【中国标准分类号】:A11
【国际标准分类号】:35_240_40
【页数】:36P.;A4
【正文语种】:英语
下载地址: 点击此处下载