标准编号:ISO/IEC TS 30104:2015
中文名称:信息技术 安全技术 物理安全攻击、缓解技术和安全要求
英文名称:Information Technology — Security Techniques — Physical Security Attacks, Mitigation Techniques and Security Requirements
发布日期:2015-05
标准范围
Physical security mechanisms are employed by cryptographic modules where the protection of themodules sensitive security parameters is desired. This Technical Specification addresses how securityassurance can be stated for products where the risk of the security environment requires the support ofsuch mechanisms. This Technical Specification addresses the following topics:— a survey of physical security attacks directed against different types of hardware embodimentsincluding a description of known physical attacks, ranging from simple attacks that require minimalskill or resources, to complex attacks that require trained, technical people and considerableresources;— guidance on the principles, best practices and techniques for the design of tamper protectionmechanisms and methods for the mitigation of those attacks; and— guidance on the evaluation or testing of hardware tamper protection mechanisms and references tocurrent standards and test programs that address hardware tamper evaluation and testing.The information in this Technical Specification is useful for product developers designing hardwaresecurity implementations, and testing or evaluation of the final product. The intent is to identify protectionmethods and attack methods in terms of complexity, cost and risk to the assets being protected. In thisway cost effective protection can be produced across a wide range of systems and needs.
立即下载标准文件