This Standard specifies key management techniques for keys used in the authentication,enciphering and deciphering of electronic messages relating to financial transactions using session keys.
In particular, this Standard—
(a) defines security interface procedures between terminals and acquirers;
(b) defines methods of interchange of the various enciphering keys used for securing transactions; and
(c) ensures that messages can only be authenticated at their correct destination.
NOTE: Principles concerning key management and physical security are dealt with in AS 2805.6.1.
