General Administration of Quality Supervision, Inspection and Quarantine of the People‘s Republic of China
Latest
GB/T 27909.3-2011
Scope
This section specifies the protection techniques for symmetric and asymmetric keys when using asymmetric cryptographic mechanisms in a retail financial services environment. It also describes the lifecycle management associated with asymmetric keys. This section applies to technical compliance with the principles described in GB/T 27909.1. The retail financial services environment of this standard is limited to the interfaces between the following entities: — card acceptance equipment and acquirer; — acquirer and card issuer; — integrated circuit card (ICC) and card acceptance equipment.
GB/T 27909.3-2011 Referenced Document
ANSI X9.42-2003 Public Key Cryptography for the Financial Services: Agreement of Symmetric Keys Using Discrete Logarithm Cryptography
GB/T 17964-2000 Information technology -Security techniques-Modes of operation for an n-bit block cipher
GB/T 20547.2 Banking Secure Cryptographic devices (retail) Part 2: Security compliance checklists for devices used in financial transaction
GB/T 21078.1 Financial Services Personal Identification Number Management and Security Part 1: PIN Basic Principles and Requirements for Card-Based Systems*, 2023-03-17 Update
ISO/IEC 9796-2:2002 Information technology - Security techniques, Digital signature schemes giving message recovery - Part 2: Integer factorization based mechanisms
GB/T 27909.3-2011 history
2011GB/T 27909.3-2011 Banking.Key management(retail).Part 3:Asymmetric cryptosystems.Key management and life cycle