Critical Security Parameter

What Does Critical Security Parameter Mean?

A critical security parameter (CSP) is data using a cryptography module to process encryption functions. Data includes passwords, security codes, cryptographic keys, personal identification numbers (PIN) and any other unprotected security information.

Advertisements

Established information security rules protect CSPs, which are only accessible from authorized computer systems. CSPs obtained by unauthorized users pose security threats.

Techopedia Explains Critical Security Parameter

The Federal Information Processing Standards (FIPS) 140 series are computer security specifications and requirements for cryptography modules. In May 2001, the most recent version was issued as FIPS 140-2.

FIPS 140-2 is comprised of four security levels, as follows:

Level 1: Has limited cryptographic module security requirements but no physical security
Level 2: Dictates physical security, e.g., tamper-resistant measures and plain text evidence for cryptographic keys and CSPs
Level 3: Adds physical security to prevent CSP access within the cryptographic module, as well as CSP zeroization after opening the module
Level 4: Provides the most robust cryptographic module security

Advertisements

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…

All Posts by Margaret Rouse

Most Popular Term

Networking

whoami Command

What is whoami? whoami is a command-line utility program for computers. It answers the question, "Who am I logged in as?" and...

Full Explanation

Margaret RouseTechnology Expert

Advertisements

Cybersecurity

Formjacking

What is Formjacking? Formjacking is the software equivalent of credit card skimming. It is a portmanteau combining "form" with part...

Full Explanation

Marshall GunnellTechnology Writer

Cybersecurity

Threat Actor

What is a Threat Actor? A threat actor is a term given to describe an entity that can potentially attack...

Full Explanation

Tim KearyTechnology Expert

Related News

dummy_img

Experts Roundtable: What DEXs Must Do Better for Adoption

Iliana Mavrou11 years

dummy_img

Artificial Intelligence

AI Alliance: More Than 50 Organizations Cast Wide Safety Net

Nicole Willing11 years

dummy_img

Featured Content

Chimpzee (CHMPZ) Will Soon End Its Presale, Enter Now Before Inevitable 10x Growth After Exchange Listing

Alan Draper11 yearsEditor-in-Chief

dummy_img

Artificial Intelligence

Understanding DePIN Protocols: How AI and Crypto Fit Together

Mensholong Lepcha11 yearsCrypto & Blockchain Writer

dummy_img

Artificial Intelligence

12 Best AI Books: What To Read If You Want to Learn & Earn

Tim Keary11 yearsTechnology Expert

dummy_img

Buzzwords and Jargon

8 Tech Terms & Buzzwords You Need to Know for 2024

Neil C. Hughes11 yearsSenior Tech Writer

Popular Categories
Show All

Artificial Intelligence

Password Managers

Project Management