The Many Faces of the Cryptographic Module: Range of Products Covered by ISO/IEC 19790 (A01a)
In this talk, the audience will embark on a deep exploration of the intricate concept of a cryptographic module (CM). The conventional definition of a cryptographic module as a set of hardware, software, and/or firmware implementing security functions within a cryptographic boundary merely scratches the surface of its complexity. The ISO 19790 standard delineates several parameters integral to this definition, which play a crucial role in categorizing cryptographic modules. These parameters revolve around three key dimensions: the Cryptographic boundary, the Operational environment, and the Physical embodiments, collectively shaping the essence of cryptographic modules.
The talk will meticulously dissect these key dimensions, unveiling their main characteristics and how they influence the categorization of CMs. Additionally, it will shed light on the validation methodology pertinent to each category. This discussion promises to offer a comprehensive understanding of the multifaceted nature of cryptographic modules and the nuances associated with their categorization and validation.