DOCSLIB.ORG

Covering PCI and PA DSS)

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Covering PCI and PA DSS) Monetra® Payment Software Secure Implementation Guide (Covering PCI and PA DSS) Revision: 3.0b3 Publication date November, 2012 Copyright © 2012 Main Street Softworks, Inc. Secure Implementation Guide: (Covering PCI and PA DSS) Main Street Softworks, Inc. Revision: 3.0b3 Publication date November, 2012 Copyright © 2012 Main Street Softworks, Inc. Legal Notice The information contained herein is provided As Is without warranty of any kind, express or implied, including but not limited to, the implied warranties of merchantability and fitness for a particular purpose. There is no warranty that the information or the use thereof does not infringe a patent, trademark, copyright, or trade secret. Main Street Softworks, Inc. shall not be liable for any direct, special, incidental, or consequential damages resulting from the use of any information contained herein, whether resulting from breach of contract, breach of warranty, negligence, or otherwise, even if Main Street has been advised of the possibility of such damages. Main Street reserves the right to make changes to the information contained herein at anytime without notice. No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of Main Street Softworks, Inc. Table of Contents 1. Monetra Security Validation (PA-DSS) ......................................................................... 1 1.1. Do Not Retain Sensitive Data ............................................................................ 1 1.2. Stored Data Protection ...................................................................................... 3 1.3. Provide Secure Password Features ..................................................................... 5 1.4. Log Application Activity ................................................................................... 7 1.5. Develop Secure Applications ............................................................................. 8 1.6. Protect Wireless Transmissions ........................................................................ 10 1.7. Test for Application Vulnerabilities .................................................................. 10 1.8. Facilitate Secure Network Implementations ....................................................... 11 1.9. Never Store Cardholder Data on the Internet ..................................................... 11 1.10. Facilitate Secure Remote Application Access .................................................. 12 1.11. Encrypt Traffic Over Public Networks ............................................................ 12 1.12. Encrypt All Non-Console Administrative Access ............................................. 13 1.13. Maintain instructional material for customers and integrators ............................ 13 2. Monetra Payment System ........................................................................................... 14 2.1. General Overview ........................................................................................... 14 2.2. Architecture .................................................................................................... 15 2.3. Application Data and Logging ......................................................................... 16 2.3.1. External Logging .................................................................................. 16 2.3.2. Internal Data Storage ............................................................................ 20 2.4. SNMP Monitoring ........................................................................................... 22 2.4.1. SNMP Monetra Architecture ................................................................. 23 2.4.2. SNMP Data Elements ........................................................................... 23 2.4.3. Installing SNMP ................................................................................... 25 2.4.4. Configuring SNMP ............................................................................... 25 2.4.5. Configure Monetra for SNMP ............................................................... 27 2.5. Monetra Virtual User SubSystem ..................................................................... 27 2.5.1. Administrative User(s) .......................................................................... 28 2.5.2. System User(s) ..................................................................................... 28 2.5.3. System SubUser(s) ............................................................................... 28 2.6. Hardware Security Modules (HSM) .................................................................. 29 2.6.1. HSM Monetra Architecture ................................................................... 29 2.6.2. Supported HSM Devices ....................................................................... 30 2.6.3. Monetra HSM Configuration ................................................................. 30 2.7. Encryption Keys ............................................................................................. 35 2.7.1. Encryption Key Creation from a console ................................................ 35 2.7.2. Encryption Key Creation from the Monetra Manager .............................. 37 2.7.3. Encryption Key Creation (with pass phrase) ........................................... 37 2.7.4. Encryption Key Maintenance ................................................................ 41 2.8. Client Certificates (SSL) .................................................................................. 41 2.8.1. Certificate Authority Setup and Use ....................................................... 42 2.8.2. Restricting SSL Connections with Certificates ........................................ 44 2.8.3. Restricting User Access with Certificates ............................................... 46 2.9. Alternate File System Security ......................................................................... 47 2.9.1. Encrypted File Systems ......................................................................... 48 A. [SAMPLE] Cryptographic Material Custodian Agreement ........................................... 49 Copyright © 2012 Main Street Softworks, Inc. | Secure Implementation Guide iii Secure Implementation Guide References ..................................................................................................................... 50 Copyright © 2012 Main Street Softworks, Inc. | Secure Implementation Guide iv 1 Monetra Security Validation (PA-DSS) 1.1. Do Not Retain Sensitive Data .................................................................................... 1 1.2. Stored Data Protection .............................................................................................. 3 1.3. Provide Secure Password Features ............................................................................. 5 1.4. Log Application Activity ........................................................................................... 7 1.5. Develop Secure Applications ..................................................................................... 8 1.6. Protect Wireless Transmissions ................................................................................ 10 1.7. Test for Application Vulnerabilities .......................................................................... 10 1.8. Facilitate Secure Network Implementations .............................................................. 11 1.9. Never Store Cardholder Data on the Internet ............................................................. 11 1.10. Facilitate Secure Remote Application Access .......................................................... 12 1.11. Encrypt Traffic Over Public Networks .................................................................... 12 1.12. Encrypt All Non-Console Administrative Access ..................................................... 13 1.13. Maintain instructional material for customers and integrators .................................... 13 Since its inception, Main Street has incorporated leading edge security practices and technologies directly into all software offerings. The following sections outline the Security Audit used to validate Monetra. They also outline the rolls associated with Monetra users, integrators and resellers when securely implementing Monetra into a PCI compliant production environment, as required by the PA- DSS standard. Version 3.0 of this guide (Monetra Secure Implementation) aligns with PCI-DSS and PA-DSS Version(s) 2.0 dated October 2010 and should be used for all new deployments. History Note: The original documentation referenced the Visa PABP document v1.1 as posted on their website date: June 01 2005. Version 1.3 of this guide (Secure Implementation) referenced the Visa PABP document version 1.3 released May 08, 2006. Version 1.4 of this guide (Secure Implementation) references Visa PABP document version 1.4 released January 2007. Version 2.0 transitioned all prior Secure Implementation documentation from PABP to PA-DSS 1.2. 1.1 Do Not Retain Sensitive Data One of the main goals of PCI/PA-DSS is to prevent the risks associated when full magnetic stripe data, security codes(i.e. CVV2 values) and/or PIN blocks are stored after authorization by payment applications. Monetra does not store Magnetic Stripe, CVV2 (security codes) or PinBlock(PVV) data post-authorization anywhere within the
Load more

Recommended publications
  • 2014 International Conference on Green Computing Communication and Electrical Engineering
    2014 International Conference on Green Computing Communication and Electrical Engineering (ICGCCEE 2014) Coimbatore, India 6-8 March 2014 Pages 1-875 IEEE Catalog Number: CFP1460X-POD ISBN: 978-1-4799-4981-6 1/2 TABLE OF CONTENTS VOLUME 1 A NOVEL ROBUST & FAULT TOLERANCE FRAMEWORK FOR WEBSERVICES USING WS- I* SPECIFICATION.............................................................................................................................................................1 Pandey, Akhilesh Kumar ; Kumar, Abhishek ; Zade, Farahnaz Rezaeian A SURVEY OF SELF ORGANIZING TRUST METHOD TO AVOID MALICIOUS PEERS FROM PEER TO PEER NETWORK ..............................................................................................................................................6 Samuvelraj, G. ; Nalini, N. CONTRIVANCE OF ENERGY EFFICIENT ROUTING ALGORITHM IN WIRELESS BODY AREA NETWORK.............................................................................................................................................................. 10 Sridharan, Srivatsan ; Jammalamadaka, Sridhar EFFECTIVE DEFENDING AGAINST FLOOD ATTACK USING STREAM-CHECK METHOD IN TOLERANT NETWORK................................................................................................................................................... 17 Kuriakose, Divya ; Daniel, D. ANONYMOUS ROUTING TECHNIQUE IN MANET FOR SECURE TRANSMISSION: ART .............................. 21 Vijayan, Aleesha ; Yamini, C. DEFINING THE FRAMEWORK FOR WIRELESS-AMI SECURITY IN SMART GRID.......................................
    [Show full text]
  • PCI PIN Transaction Security (PTS) Point of Interaction (POI)
    Payment Card Industry (PCI) PIN Transaction Security (PTS) Point of Interaction (POI) Modular Security Requirements Version 4.0 June 2013 Document Changes Date Version Description February 2010 3.x RFC version April 2010 3.0 Public release October 2011 3.1 Clarifications and errata, updates for non-PIN POIs, encrypting card readers February 2013 4.x RFC version June 2013 4.0 Public release Payment Card Industry PTS POI Security Requirements v4.0 June 2013 Copyright 2013 PCI Security Standards Council LLC Page 1 Table of Contents Document Changes ................................................................................................................. 1 About This Document .............................................................................................................. 4 Purpose .................................................................................................................................. 4 Scope of the Document .......................................................................................................... 4 Main Differences from Previous Version ................................................................................. 5 PTS Approval Modules Selection ........................................................................................... 6 Foreword .................................................................................................................................. 7 Evaluation Domains ...............................................................................................................
    [Show full text]
  • Css241 Course Title: Basic Security and Security Threats
    CSS 241 BASIC SECURITY AND SECURITY THREATS NATIONAL OPEN UNIVERSITY OF NIGERIA COURSE CODE :CSS241 COURSE TITLE: BASIC SECURITY AND SECURITY THREATS 1 CSS 241 BASIC SECURITY AND SECURITY THREATS COURSE GUIDE CSS241 BASIC SECURITY AND SECURITY THREATS Course Developer/Writer Monsuru Adegboyega Kasali Non-Violence and Intercultural Communication Advocacy Initiatives, Ibadan, Nigeria Course Editor Rasidi Okunola, Ph. D Department of Sociology University of Ibadan Oyo State Course Coordinator Adeniyi T. Adegoke, Ph.D Criminology and Security Studies School of Arts and Social Sciences National Open University of Nigeria Programme Leader Prof. Abdul-Rasheed Yesufu Dean, School of Arts and Social Sciences National Open University of Nigeria 2 CSS 241 BASIC SECURITY AND SECURITY THREATS NATIONAL OPEN UNIVERSITY OF NIGERIA National Open University of Nigeria Headquarters 14/16 Ahmadu Bello Way Victoria Island Lagos Abuja Office No. 5 Dar es Salam Street Off Aminu Kano Crescent Wuse II, Abuja Nigeria e-mail: [email protected] URL: www.nou.edu.ng Published by National Open University of Nigeria Printed ISBN: All Rights Reserved CONTENTS PAGE Introduction……………………………………..………....i-ii What You Will Learn in this Course ...................................ii Course Aims…………………………………………..... ..ii-iii Course Objectives……………………………………… …iii-iv Working through this Course ...............................................iv Course Materials……………………………….………. …v 3 CSS 241 BASIC SECURITY AND SECURITY THREATS Study Units…………………………………….………. …v-vi Textbooks and References…………….……….……… ….vi-vii Assignment File ………………………………………. ….vii Assessment ………………………………….………. ……viii Tutor-Marked Assignment……………………………. …..viii Final Examination and Grading…………………..……. …viii Course Marking Scheme ………………………………. …viii Course Overview ………………………………………. …viii-ix Presentation Schedule …………………………………. …x How to Get the Most from this Course ……………………x Reading Section.....................................................................x-xi Facilitators/Tutors and Tutorials ……………………….
    [Show full text]
  • Trusted Platform Module Explained What It Is, What It Does and What Its Benefits Are
    Bosch Security Systems | Video Systems 1 | 9 Trusted Platform Module explained What it is, what it does and what its benefits are Data subject not change without notice | August 2016 Security Systems / Video Systems Bosch Security Systems | Video Systems 2 | 9 Table of contents 1 Introduction 3 2 Trusted Platform Module 4 2.1 What a Trusted Platform Module is ..................................................................................................................... 4 2.2 What a Trusted Platform Module does ................................................................................................................ 5 2.3 What a Trusted Platform Module’s benefits are .................................................................................................. 6 3 Appendix 7 3.1 Standard or not standard? .................................................................................................................................. 7 3.2 How clients or integrations are affected .............................................................................................................. 7 4 Glossary 8 Data subject not change without notice | August 2016 Security Systems / Video Systems Bosch Security Systems | Video Systems 3 | 9 1 Introduction As security systems have transitioned into network devices over the last few decades, system vulnerabilities have transitioned as well. This shift in network utilization brings with it far more vulnerabilities than compared to older analog systems, and due to the very nature of
    [Show full text]
  • Komunikacija Grafičkog I Središnjeg Procesora U Heterogenom Računalnom Sustavu
    Komunikacija grafičkog i središnjeg procesora u heterogenom računalnom sustavu Sočković, Augustin Master's thesis / Diplomski rad 2019 Degree Grantor / Ustanova koja je dodijelila akademski / stručni stupanj: University of Rijeka / Sveučilište u Rijeci Permanent link / Trajna poveznica: https://urn.nsk.hr/urn:nbn:hr:195:641511 Rights / Prava: In copyright Download date / Datum preuzimanja: 2021-09-27 Repository / Repozitorij: Repository of the University of Rijeka, Department of Informatics - INFORI Repository Sveučilište u Rijeci – Odjel za informatiku Diplomski studij informatike, smjer Poslovna informatika Augustin Sočković Komunikacija grafičkog i središnjeg procesora u heterogenom računalnom sustavu Diplomski rad Mentor: v. pred. dr. sc. Vedran Miletić Rijeka, 10. prosinca 2019. Sažetak U radu je opisana komunikacija osnovnog i grafičkog procesora u heterogenom računalnom sustavu, definirana heterogenua sustavska arhitektura (HSA), te skiciran "povijesni okvir" razvoja CPU-a i GPU-a do tehnologije koja je omgućila HSA. Opisan je načn rada platforme za razvoj aplikacija za heterogenu sustavsku arhitekturu, specifično način na koji grafički i središnji procesor unutar iste komuniciraju. Odabrana je platforma ROCm zbog otvorenosti i dostupnosti AMD-ovog grafičkog procesora. Ključne riječi CPU, GPU, ROCm, rocBLAS, rocSPARSE, rocRAND, AMD, HPC, heterogeno, računarstvo, arhitektura Sadržaj 1. Uvod................................................................................................................................................1
    [Show full text]
  • What Does the Future Hold?
    What does the Future Hold? Hakim Weatherspoon CS 3410, Spring 2012 Computer Science Cornell University Announcements Prelim3 Results • Mean 62.2 ± 15.5 (median 64.5), Max 97 • Pickup in Homework Passback Room 2 Announcements How to improve your grade? Submit a course evaluation and drop lowest homework score • To receive credit, Submit before Monday, May 7th 3 Announcements FlameWar Pizza Party was great! • Winner: Team MakeTotalDestroy Kenny Deakins and Luis Ruigomez 4 Announcements Final Project Design Doc sign‐up via CMS sign up Sunday, Monday, or Tuesday May 6th, 7th, or 8th Demo Sign‐Up via CMS. sign up Tuesday, May 15th or Wednesday, May 16th CMS submission due: • Due 6:30pm Wednesday, May 16th 5 Big Picture about the Future 6 Big Picture How a processor works? How a computer is organized? compute jump/branch targets A memory register alu D D file B +4 addr PC B control din dout M inst memory extend new imm forward detect pc unit hazard Instruction Instruction Write‐ Fetch Decode ctrl Execute ctrl Memory ctrl Back IF/ID ID/EX EX/MEM MEM/WB 7 What’s next? More of Moore 8 Moore’s Law Moore’s Law introduced in 1965 • Number of transistors that can be integrated on a single die would double every 18 to 24 months (i.e., grow exponentially with time). Amazingly visionary • 2300 transistors, 1 MHz clock (Intel 4004) ‐ 1971 • 16 Million transistors (Ultra Sparc III) • 42 Million transistors, 2 GHz clock (Intel Xeon) – 2001 • 55 Million transistors, 3 GHz, 130nm technology, 250mm2 die (Intel Pentium 4) – 2004 • 290+ Million transistors, 3
    [Show full text]
  • Pacsystems Rx3i PNSR Guide Form Spec
    PACSystems Guide Form Specification Version 1.0 April 24, 2020 Contents Document Revision History ............................................................................................................... 5 1 – General ......................................................................................................................................... 6 Scope .............................................................................................................................................. 6 Definitions ....................................................................................................................................... 6 2 – Manufacturer’s Standards ........................................................................................................... 7 Industry Standards.......................................................................................................................... 7 Process Controller Standards and Agency Approvals.................................................................. 8 Design and Manufacture ................................................................................................................ 9 Secure Development Life Cycle..................................................................................................... 9 Product Upgrades ........................................................................................................................... 9 Product Life Cycle .........................................................................................................................
    [Show full text]
  • MSL8256 Manual
    Manual MSL8256 Date: August 17, 2020 Prepared by Trenton Systems Model Number: MSL8256 1725 MacLeod Dr Lawrenceville, GA 30043 Revision: 2 Section 0 / Table of Contents Table of Contents Preface ........................................................................................................................................................ 2 About Trenton Systems ............................................................................................................................. 3 Warranty & Policies ................................................................................................................................... 4 Handling Precautions ................................................................................................................................ 7 Regulatory Compliance ............................................................................................................................. 8 System Overview ..................................................................................................................................... 11 Diagrams & Layouts ................................................................................................................................ 13 Technical Specifications .......................................................................................................................... 15 August 17, 2020 | Manual (Rev 2) | Rev. 2 | Doc. No.: 7771 1 Section 1 / Background Preface The information in this user’s manual has been carefully
    [Show full text]
  • Secure Processor SECURE PROCESSOR Hardware-Supported Security
    2015/6/2 http://LoCCS.sjtu.edu.cn LoCCS @ SJTU December 17, 2012 Secure Processor SECURE PROCESSOR Hardware-supported security THREAT MODEL 攻击模型 • Physical attack on: • Memory • Bus • 方法: • Cold-boot attack • DMA attack • 探针监听 • 温度、电磁攻击等 Cold-boot attack COLD-BOOT ATTACK • Lest We Rember: COLD BOOT ATTACKS ON ENCRYPTION KEYS. 2008, Princeton University • 年年初,普林斯顿大学电子前沿基金会和温瑞尔系统公司的研究人员联合发表了 HOW TO 一篇题为《鲜为人知的秘密鲜为人知的秘密::::对密钥的冷启动攻击对密钥的冷启动攻击对密钥的冷启动攻击》》》》的文章,该文详解了从运 : 行系统获取内存信息的一种新型攻击方式。 -50 ◦C 1 2015/6/2 DMA ATTACK • DMA DMA attack • Direct Memory Access • 将传送到模块的信息复制到 内存 (RAM) ,并允许已处理 的信息自动从内存移到外部 外围装置。所有这些工作皆 独立于目前的 CPU 活动。 HOW TO: Example :Russ Sevinsky’s Thunderbolt DMA • 实施总线偷听攻击,攻击者可通过 DMA 通道直接 访问小于 4G 物理内存(覆盖敏感数据的几率非常 大)。 • 典型案例: • 火线 (Apple Firewire)攻击 • Thunderbolt 攻击 • PCIe 总线攻击 DMA ATTACK MEMORY DUMP ANALYSIS • Current DMA research • Tool :::AESKeyFind • I/O attacks in Intel-PC architectures and • 在镜像中搜索并恢复 AES 密钥 countermeasures • 支持从不完整镜像中恢复密钥 • Understanding DMA malware • After-class reading Paper : • Lest We Remember: Cold Boot Attacks on Encryption • Current Thunderbolt attacks : Keys , in Proc. 17th USENIX Security Symposium (Sec ’08), San Jose, CA, July 2008. • Inception——Dump 4GB memory • Daisy chaining Thunderbolt and Firewire • De Mysteriis Dom Jobsivs (Mac EFI Rootkits) 2 2015/6/2 MEMORY DUMP ANALYSIS • Tool :::Volatility http://code.google.com/p/volatility/ • 开源内存取证分析框架,以灵活增补插件的方式工作 • 利用某些插件,渗透人员可以抽取出: ATTACKS ON HARDWARE : • Windows 的hashes • SAM (安全用户帐户信息数据库) • Hardware-targeting • 注册表系统文件地址 • Purpose: • obtain the
    [Show full text]
  • Vol. 15, July 2016
    Vol. 15, July 2016 1-1-1 Tsushima-naka, Kita-ku, Okayama 700-8530 Japan ©Okayama University Vol. 15, July 2016 ■ Contents News ・ Okayama University participates in “nano tech 2016”: world’s largest exhibition of nanotechnology ・ Ambassador of the European Union Delegation to Japan gives a lecture on “European Higher Education in the World” Feature Okadai is Japan’s leading university in IoT security Research Highlight ・ World’s first flexible security Secure Cryptoprocessor with adjustable security level ・ Traceability for Multimedia Content: Protection against Pirated Copies Topics Okayama Travelogue ・ Yumeji Art Museum 1-1-1 Tsushima-naka, Kita-ku, Okayama 700-8530 Japan ©Okayama University Vol. 15, July 2016 ■ News Okayama University participates in “nano tech 2016”: world’s largest exhibition of nanotechnology Okayama University participated in “nano tech 2016 – the 15th International Nanotechnology Exhibition and Conference,” the world’s largest exhibition on nanotechnology held at Tokyo Big Sight , 27 to 29 January 2016. Representatives from Okayama University displayed four posters and gave the following four oral presentations about science and technology 1. Yuta Nishina, Associate Professor, Research Core for Interdisciplinary Sciences Title: Preparation and application of wood-derived nanocarbons (WNCs ) 2. Takashi Teranishi, Assistant Professor, Department of Applied Chemistry, Graduate School of Natural Science and Technology Title: Secondary battery with nano-ferroelectrics polarization assisted ultrahigh rate capability 3. Jun Kano, Associate Professor, Department of Applied Chemistry, Graduate School of Natural Science and Technology Title: Catalyst designed by ferroelectric compounds 4. Toshihiko Kiwa, Associate Professor, Department of Medical Bioengineering, Graduate School of Natural Science and Technology Title: Imaging of chemical reactions using a terahertz chemical microscopy 1-1-1 Tsushima-naka, Kita-ku, Okayama 700-8530 Japan ©Okayama University Vol.
    [Show full text]
  • Where Are We Going?
    What does the Future Hold? Hakim Weatherspoon CS 3410, Spring 2012 Computer Science Cornell University Announcements Prelim3 Results • Mean 62.2 ± 15.5 (median 64.5), Max 97 • Pickup in Homework Passback Room 2 Announcements How to improve your grade? Submit a course evaluation and drop lowest homework score • To receive credit, Submit before Monday, May 7th 3 Announcements FlameWar Pizza Party was great! • Winner: Team MakeTotalDestroy Kenny Deakins and Luis Ruigomez 4 Announcements Final Project Design Doc sign-up via CMS sign up Sunday, Monday, or Tuesday May 6th, 7th, or 8th Demo Sign-Up via CMS. sign up Tuesday, May 15th or Wednesday, May 16th CMS submission due: • Due 6:30pm Wednesday, May 16th 5 Big Picture about the Future 6 Big Picture How a processor works? How a computer is organized? compute jump/branch targets A memory register D alu D file B +4 addr PC B control din dout M inst memory extend new imm forward detect pc unit hazard Instruction Instruction Write- ctrl ctrl Fetch Decode ctrl Execute Memory Back IF/ID ID/EX EX/MEM MEM/WB 7 What’s next? More of Moore 8 Moore’s Law Moore’s Law introduced in 1965 • Number of transistors that can be integrated on a single die would double every 18 to 24 months (i.e., grow exponentially with time). Amazingly visionary • 2300 transistors, 1 MHz clock (Intel 4004) - 1971 • 16 Million transistors (Ultra Sparc III) • 42 Million transistors, 2 GHz clock (Intel Xeon) – 2001 • 55 Million transistors, 3 GHz, 130nm technology, 250mm2 die (Intel Pentium 4) – 2004 • 290+ Million transistors, 3
    [Show full text]
  • Implementations of Reconfigurable Cryptoprocessor a Survey N Rajitha1, R Sridevi2 1Research Scholar, JNTUH, Hyderabad 2Professor in CSE JNTUH, Hyderabad
    International Conference on Information Engineering, Management and Security [ICIEMS] 98 International Conference on Information Engineering, Management and Security 2015 [ICIEMS 2015] ISBN 978-81-929742-7-9 VOL 01 Website www.iciems.in eMail [email protected] Received 10 - July - 2015 Accepted 31- July - 2015 Article ID ICIEMS016 eAID ICIEMS.2015.016 Implementations of Reconfigurable Cryptoprocessor A Survey N Rajitha1, R Sridevi2 1Research Scholar, JNTUH, Hyderabad 2Professor in CSE JNTUH, Hyderabad ABSTRACT: One among the several challenges in the area of applied cryptography is not just devising a secure cryptographic algorithm but also to manage with its secure and efficient implementation in the hardware and software platforms. Cryptographic algorithms have widespread use for every conceivable purpose. Hence, secure implementation of the algorithm is essential in order to thwart the side channel attacks. Also, most of the cryptographic algorithms rely on modular arithmetic, algebraic operations and mathematical functions and hence are computation intensive. Consequently, these algorithms may be isolated to be implemented on a secure and separate cryptographic unit. Keywords: Trust, FPGA security, Cryptographic processor, reconfigurable cryptosystems. I. INTRODUCTION There is an alarming need for securing wide area of applications of cryptography that we use in our daily life besides military, defense, banking, finance sectors and many more. To cater to this need innumerable products/services have been developed which are predominantly based on encryption. Encryption in turn relies on the security of the algorithm and the key used. The different encryption algorithms proposed so far have been subjected to various forms of attacks. While it is not possible to devise an algorithm that works perfectly well and sustains all forms of attacks, cryptographers strive to develop one that is resistant to attacks and that performs well.
    [Show full text]