Conjunto de procesos y mecanismos que respaldan el
establecimiento y mantenimiento de las claves, así como el reemplazo de claves
anteriores por nuevas claves, según sea necesario.
http://es.pcisecuritystandards.org
Proceso de generación, almacenamiento, distribución
y aplicación de claves criptográficas de acuerdo con una política de seguridad
(ISO-8732, ISO-7498-2). [Ribagorda:1997]
Proceso que comprende la generación, distribución,
almacenamiento, utilización, archivo y destrucción de las claves empleadas en
un criptosistema. [CESID:1997]
Proceso que controla de modo seguro los
procedimientos que regulan la actuación del Algoritmo Nacional de Cifra.
[CESID:1997]
Generación, almacenamiento, distribución, supresión,
archivo y aplicación de claves de acuerdo con una política de seguridad.
[ISO-7498-2:1989]
The activities involving the
handling of cryptographic keys and other related security parameters (e.g., IVs
and passwords) during the entire life cycle of the keys, including their
generation, storage, establishment, entry and output, and zeroization. [CNSSI_4009:2010]
A unit that provides for
secure electronic distribution of encryption keys to authorized users. [CNSSI_4009:2010]
All parts – computer
hardware, firmware, software, and other equipment and its documentation;
facilities that house the equipment and related functions; and companion
standards, policies, procedures, and doctrine that form the system that manages
and supports the ordering and delivery of cryptographic material and related
information products and services to users. [CNSSI_4009:2010]
1a. (I) The process of
handling keying material during its life cycle in a cryptographic system; and
the supervision and control of that process. (See: key distribution, key
escrow, keying material, public-key infrastructure.)
Usage: Usually understood to
include ordering, generating, storing, archiving, escrowing, distributing,
loading, destroying, auditing, and accounting for the material.
1b. (O) /NIST/ "The activities
involving the handling of cryptographic keys and other related security
parameters (e.g., IVs, counters) during the entire life cycle of the keys,
including their generation, storage, distribution, entry and use, deletion or
destruction, and archiving." [FP140, SP57]
2. (O) /OSIRM/ "The
generation, storage, distribution, deletion, archiving and application of keys
in accordance with a security policy." [ISO-7498-2]
[RFC4949:2007]
The activities involving the
handling of cryptographic keys and other related security parameters (e.g., IVs
and passwords) during the entire life cycle of the keys, including their
generation, storage, establishment, entry and output, and destruction. [NIST-SP800-57:2007]
A function in the lifecycle
of keying material; a repository containing keying material of historical
interest. [NIST-SP800-57:2007]
The Key Management Policy is
a high-level statement of organizational key management policies that
identifies high-level structure, responsibilities, governing standards and
recommendations, organizational dependencies and other relationships, and
security policies. [NIST-SP800-57:2007]
The Key Management Practices
Statement is a document or set of documentation that describes in detail the
organizational structure, responsible roles, and organization rules for the
functions identified in the Key Management Policy. [NIST-SP800-57:2007]
the administration and use
of the generation, registration, certification, deregistration, distribution,
installation, storage, archiving, revocation, derivation and destruction of
keying material in accordance with a security policy. [ISO-19790:2006]
the activities involving the
handling of cryptographic keys and other related security parameters (e.g., IVs
and passwords) during the entire life cycle of the keys, including their
generation, storage, establishment, entry and output, and zeroization. [FIPS-140-2:2001]
The generation, storage,
distribution, deletion, archiving and application of keys in accordance with a
security policy. [ISO-7498-2:1989]
In cryptography, it is the
set of processes and mechanisms which support key establishment and
maintenance, including replacing older keys with new keys as necessary.
https://www.pcisecuritystandards.org/security_standards/glossary.php
L’ensemble des
mécanismes et processus qui prennent en charge l’établissement et la
maintenance des clés, notamment le remplacement d’anciennes clés par des
nouvelles, le cas échéant.
http://fr.pcisecuritystandards.org/
Production, stockage,
distribution, suppression, archivage et application de clés conformément à la
politique de sécurité. [ISO-7498-2:1989]