- Cryptoperiod
-
A cryptoperiod is the time span during which a specific cryptographic key is authorized for use. Common government guidelines range from 1 to 3 years for asymmetric cryptography[1], and 1 day to 7 days for symmetric cipher traffic keys.[2]
Factors to consider include the strength of the underlying encryption algorithm, key length, the likelihood of compromise through a security breach and the availability of mechanims of revoking keys.
In traditional cryptographic practice, keys were changed at regular intervals, typically at the same time each day. The code word for a key change, in NSA parlance, is HJ or Hotel Juliet in the NATO phonetic alphabet. [3][4]
References
- ^ http://www.keylength.com/en/4/
- ^ http://www.cse-cst.gc.ca/its-sti/services/crypto-services-crypto/ca-ac-eng.html
- ^ "Telecommunications Handbook" (PDF). U.S. Department of State Foreign Affairs. 12 2010. pp. 26. http://www.state.gov/documents/organization/89282.pdf. Retrieved 5/10/2011.
- ^ http://jproc.ca/crypto/terms.html
- Conduct Unbecoming, Randy Shilts, Macmillan, 2005, p. 117, describes HJ key change procedure
Categories:- Cryptography stubs
- Key management
Wikimedia Foundation. 2010.