cryptographic module

{{Short description|Cryptographic component of a computer system}}

A cryptographic module is a component of a computer system that securely implements cryptographic algorithms, typically with some element of tamper resistance.

NIST defines a cryptographic module as "The set of hardware, software, and/or firmware that implements security functions (including cryptographic algorithms), holds plaintext keys and uses them for performing cryptographic operations, and is contained within a cryptographic module boundary."{{Cite web |last= |first= |title=Cryptographic module - Glossary |url=https://csrc.nist.gov/glossary/term/Cryptographicmodule |access-date=2023-09-24 |website=csrc.nist.gov |language=EN-US}}

Hardware security modules, including secure cryptoprocessors, are one way of implementing cryptographic modules.

Standards for cryptographic modules include FIPS 140-3 and ISO/IEC 19790.{{cite web |date=2019-03-22 |title=FIPS PUB 140-3: Security Requirements for Cryptographic Modules |url=https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf |publisher=NIST}}{{Cite web |last= |title=ISO/IEC 19790:2012: Information technology — Security techniques — Security requirements for cryptographic modules |url=https://www.iso.org/standard/52906.html |access-date=2023-09-24 |website=ISO |language=en}}