12. Physical Security Policy
The cryptographic module contains tamper detection and response mechanisms and an
EFP mechanism.
Please see the IBM eServer Cryptographic Co-Processor Security Module security policy
for a full description of the physical security mechanisms employed by the module.
13. Mitigation of Other Attacks Policy
Please see the IBM eServer Cryptographic Co-Processor Security Module security policy
for a full description of the physical security.
14. References
The following documents are referenced by this document, are related to it, or provide
background material related to it:
1.
Security Policy for IBM eServer Cryptographic Coprocessor Security Module - Model
4764001 - Firmware (MiniBoot) version 1.16, Certificate #661.
2.
Data Encryption Standard FIPS PUB 46-2, March 28, 1994
3.
Digital Signature Standard (DSA) FIPS PUB 186, 1992
4.
Financial Institution Retail Message Authentication ANSI X9.19, August 13, 1986
5.
Performance Criteria for Information-Based Indicia and Security Architecture for
Information-Based Indicia Postage Metering Systems (PCIBISAIBIPMS), August 19,
1998
6.
Performance Criteria for Information-Based Indicia and Security Architecture for
Open IBI Postage Evidencing Systems (PCIBI-O), June 25, 1999
7.
Secure Hash Standard FIPS PUB 180-1, April 17, 1995
8.
Security Requirements for Cryptographic Modules FIPS PUB 140-2
15. Definitions and Acronyms
15.1 Acronyms
ANSI
American National Standards Institute
BBRAM Battery Backup Random Access Memory
CM
Cryptographic Module
CSP
Critical Security Parameter
DEA
Data Encryption Algorithm
DES
Data Encryption Standard
DSA
Digital Signature Algorithm
DSS
Digital Signature Standards
EFP
Environmental Failure Protection
EFT
Environmental Failure Testing