Documents of this program

Regulations

The regulations of JCMVP are listed in the following.

Rules and operational manuals are listed in the following. In these documents, terms in bold mean defined one, and terms in bold italic mean a related document.

(Note: Written in Japanese)

Rules

Manuals

Requirements used in Cryptographic Module Testing

The following ISO/IEC standards are published applicable in JCMVP.

• ISO/IEC 19790:2012 (Corrected version 2015-12-15)
• Information technology — Security techniques — Security requirements for cryptographic modules
• ISO/IEC 24759:2017
• Information technology — Security techniques — Test requirements for cryptographic modules

ISO/IEC 19790:2012 was developed through discussions in ISO/IEC JTC1/SC27 based on a draft version of FIPS 140-3, and the corrected reprint version of ISO/IEC 19790:2012 was published in December 2015. Note that FIPS 140-3open new window was approved and issued on May 1st, 2019.

ISO/IEC 24759:2017 specifies testing requirements for demonstrating the conformity to the requirements specified in ISO/IEC 19790:2012 (Corrected version 2015-12-15), and was published in March 2017.

ISO/IEC standards associated with JCMVP

The following ISO/IEC standards are published which are associated with JCMVP.

• ISO/IEC 19896-2:2018
• Information technology — Security techniques — Competence requirements for information security testers and evaluators — Part 2: Knowledge, skills and effectiveness requirements for ISO/IEC 19790 testers

ISO/IEC 19896-2:2018 specifies competence requirements such as knowledge and skills for cryptographic module testing and have been developed through discussions in ISO/IEC JTC1/SC27.

• ISO/IEC 18367:2016
• Information technology — Security techniques — Cryptographic algorithms and security mechanisms conformance testing

 ISO/IEC 18367:2016 gives guidelines for cryptographic algorithms and security mechanisms conformance testing methods and have been developed through discussions in ISO/IEC JTC1/SC27. ISO/IEC 18367:2016 is based on the conformance testing methods employed in JCMVP and in CAVP

• ISO/IEC 20543:2019
• Information technology — Security techniques — Test and analysis methods for random bit generators within ISO/IEC 19790 and ISO/IEC 15408

ISO/IEC 20543:2019 specifies a methodology for the evaluation of random bit generators intended to be used for cryptographic applications, and have been developed through discussions in ISO/IEC JTC1/SC27.

JCMVP Implementation Guidance

The following shows the guidance about operations in this program, and interpretations of security requirements for cryptographic modules and of Test requirements for cryptographic modules.

• (JIG-01)
  • JCMVP Implementation Guidance(PDF, 21 June 2013, 995KB, in Japanese)(PDF:462 KB)

Target functions of Cryptographic Algorithm Implementation Testing

• (ASF-01)
• The specifications about the approved security functions (in Japanese)(ASF-01)[PDF](PDF:469 KB)
• (LSF-01)
  • The specifications about the not approved security functions(in Japanese)(PDF:188 KB)

Requirements used in Cryptographic Algorithm Implementation Testing

The following documents specify detailed test requirements used in Cryptographic Algorithm Implementation Testing.

(Note: Written in Japanese)

JCMVP Cryptographic Algorithm Implementation Testing Requirements

• (ATR-01)
  • JCMVP Cryptographic Algorithm Implementation Testing Requirements(PDF:67 KB)

Specifications of Cryptographic Algorithm Implementation Testing

• (ATR-01-A)
  • [New Version]Specifications of Cryptographic Algorithm Implementation Testing
    — Public-Key Cryptography —[PDF](Effective until the next revision)(PDF:378 KB)
• (ATR-01-B)
  • Specifications of Cryptographic Algorithm Implementation Testing
    — Symmetric-Key Cryptography —(PDF:325 KB)
• (ATR-01-C)
  • Specifications of Cryptographic Algorithm Implementation Testing
    — Hash Functions —(PDF:257 KB)
• (ATR-01-D)
  • Specifications of Cryptographic Algorithm Implementation Testing
    — Message Authentication —(PDF:278 KB)
• (ATR-01-E)
  • Specifications of Cryptographic Algorithm Implementation Testing
    — Random Number Generators —(PDF:291 KB)
• (ATR-01-F)
  • Specifications of Cryptographic Algorithm Implementation Testing
    — Key Establishment Schemes —[PDF](PDF:540 KB)