Customer Service:
Mon - Fri: 8:30 am - 6 pm EST

 Most recent

ANSI X9.24-3-2017

Retail Financial Services Symmetric Key Management - Part 3: Derived Unique Key Per Transaction

This part of the standard describes the AES DUKPT algorithm (Derived Unique Key Per Transaction), which uses a Base Derivation Key (BDK) to derive unique per device initial keys for transaction originating SCDs, and derive unique per transaction working keys from the initial keys based on the transaction number. Working keys can be used for a variety of functions, such as encryption of PINs, data or other keys, for derivation of other keys, for message authentication, etc. AES DUKPT supports the derivation of AES-128, AES-192, AES-256, and double and triple length TDEA keys from AES-128, AES-192, and AES-256 BDKs

Content Provider
Accredited Standards Committee, Inc. - Financial Industry Standards [ASCX9]


As the voice of the U.S. standards and conformity assessment system, the American National Standards Institute (ANSI) empowers its members and constituents to strengthen the U.S. marketplace position in the global economy while helping to assure the safety and health of consumers and the protection of the environment.