What is ISO/IEC 19772 about?
ISO/IEC 19772 specifies five methods for authenticated encryption, i.e., defined ways of processing a data string with the following security objectives:
- Data confidentiality, i.e., protection against unauthorized disclosure of data
- Data integrity, i.e., protection that enables the recipient of data to verify that it has not been modified
- Data origin authentication, i.e., protection that enables the recipient of data to verify the identity of the data originator
All five methods specified in this ISO/IEC 19772 are based on a block cipher algorithm and require the originator and the recipient of the protected data to share a secret key for this block cipher.
Note: Examples of types of data that can need to be sent in unencrypted form, but whose integrity is to be protected, include addresses, port numbers, sequence numbers, protocol version numbers and other network protocol fields that indicate how the plaintext is to be handled, forwarded or processed.
Who is ISO/IEC 19772 for?
ISO/IEC 19772 on information security is applicable to:
- Information technology companies
- Software companies
- Cyber security cell
- Financial firms
- Computer hardware companies
- Government authorities
Why should you use ISO/IEC 19772?
Data protection has become more critical than ever. With more complicated risks coming up, we need to consistently ensure that our data is safe.
ISO/IEC 19772 is concerned with techniques that enable a secret key to be shared by all members of a defined group with the assistance of a trusted third party known as a key distribution centre.
ISO/IEC 19772 will help you in understanding the encryption mechanisms. These mechanisms are key wrap, CCM (counter with CBC-MAC), EAX, MAC, and CGM (Galois/Counter Mode). The MAC mechanisms specified in ISO/IEC 19772 helps you in protecting the data by encrypting it and then help in computing MAC on encrypted data. These mechanisms are not only used in encrypting the data but also useful in decrypting the data.
Buying ISO/IEC 19772 will help you in providing both integrity and confidentiality protection of data and also helps in data authentication. This ISO/IEC 19772 ensures the safety of your data and protects your data from theft or from external users.
What’s changed since the last update?
BS ISO/IEC 19772:2020 supersedes BS ISO/IEC 19772:2009. BS ISO/IEC 19772:2020 includes some technical changes with respect to BS ISO/IEC 19772:2009. These include:
- Old Clause 6 has been removed following the deprecation of mechanism 1 (OCB 2.0)
- Optional additional authenticated data has been included in mechanism 5