NIST SP 800-152

From IDESG Wiki
Jump to navigation Jump to search

Title: Requirements and Desirable Features of U.S. Federal Cryptographic Key Management Systems


Category: Security Requirements Profile


Date: 8/8/2012


Creator: NIST


URL: http://csrc.nist.gov/publications/drafts/800-152/draft-sp-800-152.pdf


Description: This document provides policy guidance for designing NIST SP 800-130 conformant Cryptographic Key Management Systems for Federal Government purposes, with the goal of providing requirements to support interoperability and compliance with Federal policy. For all of the requirements categories it provides base requirements, augmented requirements and desirable future goals.


Privacy: Lists anonymity and protection of personal privacy as stretch goals for section 4.4 Accountability. It also refers to personal and function authentication for access to keys and metadata as a desirable goal for a CKMS, this feature would support protection of user attributes by supporting individual accountability.


Security:


Interoperability: The purpose of the document is to provide parameters to SP 800-130 that will permit an interoperable selection for CKMS used by the Government.


Terms: