标准摘要
[中文适用范围]: 本国际标准规定了非侵入式攻击缓解测试指标,用于确定是否符合 ISO/IEC 19790 中针对安全级别 3 和 4 所规定的要求。测试指标与 ISO/IEC 19790 中规定的安全功能相关。测试将在加密模块的定义边界及其定义边界上可用的 I/O 进行。测试实验室用来测试加密模块是否符合 ISO/IEC 19790 所规定的要求的测试方法以及本国际标准中针对 ISO/IEC 19790 所规定的每个相关安全功能所规定的测试指标在 ISO/IEC 24759 中规定。本国际标准采用的测试方法是一种高效的“按钮式”测试方法:测试技术合理、可重复且成本适中。 [外文原描述]: ISO/IEC 17825:2016 specifies the non-invasive attack mitigation test metrics for determining conformance to the requirements specified in ISO/IEC 19790 for Security Levels 3 and 4. The test metrics are associated with the security functions specified in ISO/IEC 19790. Testing will be conducted at the defined boundary of the cryptographic module and I/O available at its defined boundary. The test methods used by testing laboratories to test whether the cryptographic module conforms to the requirements specified in ISO/IEC 19790 and the test metrics specified in this International Standard for each of the associated security functions specified in ISO/IEC 19790 are specified in ISO/IEC 24759. The test approach employed in this International Standard is an efficient "push-button" approach: the tests are technically sound, repeatable and have moderate costs.
英文名称Information technology - Security techniques - Testing methods for the mitigation of non-invasive attack classes against cryptographic modules