Why a Banking Key Management System Must Support Atalla Key Blocks

Why a Banking Key Management System Must Support Atalla Key Blocks

Invented by Mohamed Atalla, the Atalla key block is the root of all key blocks. All over the globe, hundreds of millions of financial transactions are secured daily using hardware security modules (HSMs) and the Atalla key block format that follows TR-31 guidelines. Here we will explain a bit about AKB and why a banking-grade key management system (KMS) must support it.

Read more
Banks Need to be Digitally Agile and Cryptography Should be the Enabler

Banks Need to be Digitally Agile and Cryptography Should be the Enabler

For traditional banks to rise above the competition they face from big tech, neobanks, and fintechs, they need to add new digital skills to their traditional banking capabilities; positioning themselves as agile providers of financial services by providing demand-driven services at the right time and place.

Read more
Securing the Life-cycle of a Cryptographic Key

Securing the Life-cycle of a Cryptographic Key

This article discusses the main phases involved in the life-cycle of a cryptographic key, and how the operational lifetime of a key and its strength can be determined. It also looks at some driving forces to automate key management.

Read more
High-Security Cryptographic Key Management for the Hybrid-Cloud User

High-Security Cryptographic Key Management for the Hybrid-Cloud User

When migrating their business-critical applications and cryptography to the cloud, banks and financial institutions face a number of concerns. The push to adopt cloud computing for the sake of efficiency and innovation must be balanced with the responsibility to protect sensitive data and processes.

Read more
ANSI X9.24-1-2017: Key Distribution 

ANSI X9.24-1-2017: Key Distribution 

Key distribution is perhaps the most important and crucial aspect of the ANSI X9.24-1-2017 part 1 standard. But first, let us explain what cryptographic key distribution is.

Read more
ANSI X9.24-1-2017: Key Loading

ANSI X9.24-1-2017: Key Loading

The ANSI X9.24-1-2017 standard defines the requirements for the loading of key components or shares, and the loading of cleartext keys. The loading of encrypted keys is described in other parts of the standard.

Read more
ANSI X9.24-1-2017: Understanding Symmetric Key Creation and Key Component & Key Share Creation

ANSI X9.24-1-2017: Understanding Symmetric Key Creation and Key Component & Key Share Creation

In this article, we look at the process of key generation and key derivation as described by the ANSI X9.24-1-2017 standard. This process is mandatory for operations performed by the retail financial services industry.

Read more
ANSI X9.24-1-2017 & ISO 13491-1: An Introduction to Secure Cryptographic Devices Used in a Retail Financial Services Environment

ANSI X9.24-1-2017 & ISO 13491-1: An Introduction to Secure Cryptographic Devices Used in a Retail Financial Services Environment

The ANSI X9.24-1: 2017 standard requires the use of secure cryptographic devices (SCDs) in the context of symmetric key cryptography and refers to the ISO 13491-1 standard for the specifications that must be met for a device to be approved as an SCD. This article outlines and explains some of the aspects and requirements that both the X9.24-1-2017 and ISO 13491-1 mandate for SCDs that are used in retail financial services systems.

Read more
Migrating Business-Critical Cryptography to the Cloud - Considerations for the Banking Sector

Migrating Business-Critical Cryptography to the Cloud - Considerations for the Banking Sector

Today, financial institutions are driven by a strategic question: How can they embrace the benefits from the cloud’s flexible and scalable on-demand services, while perpetuating a trustworthy, banking-grade level of cryptographic security?

Read more