ISO/IEC 19790:2012
Subscribe to updates

Information technology -- Security techniques -- Security requirements for cryptographic modules


ISO/IEC 19790:2012 the security requirements for a cryptographic module utilised within a security system protecting sensitive information in computer and telecommunication systems. This International Standard defines four security levels for cryptographic modules to provide for a wide spectrum of data sensitivity (e.g. low value administrative data, million dollar funds transfers, life protecting data, personal identity information, and sensitive information used by government) and a diversity of application environments (e.g. a guarded facility, an office, removable media, and a completely unprotected location). This International Standard specifies four security levels for each of 11 requirement areas with each security level increasing security over the preceding level.

ISO/IEC 19790:2012 specifies security requirements specified intended to maintain the security provided by a cryptographic module and compliance to this International Standard is not sufficient to ensure that a particular module is secure or that the security provided by the module is sufficient and acceptable to the owner of the information that is being protected.


Related standards

  • PDF

    This format preserves the paper layout, and is watermarked

  • EPUB

    This format allows documents to be read on tablets and smartphones


    Enhanced user-friendly colour PDF format


    See any updates made from previous versions at a glance


    Normally A4 size documents. Shipping costs apply


Swiss francs CHF 178

Add to basket

Got a question?

Check out our FAQs

Email customer services
or call us on +41 22 749 08 88
09:00 – 12:30, 14:00 – 17:00 (UTC+1).