Customer Service:
Mon - Fri: 8:30 am - 6 pm EST

X9: Accredited Standards Committee X9, Inc.

ASC X9, the Accredited Standards Committee X9, is a nonprofit organization that develops and publishes standards for the financial services industry. Headquartered in Annapolis, United States, ASC X9 standards define the workings of the financial industry in the United States. With approximately 130 member companies, including key industry leaders, and the global financial influence wielded by the United States, ASC X9 standards strongly affect financial systems throughout the world. ASC X9 also serves as the administrator for the U.S. TAGs (United States Technical Advisory Group) to ISO/TC 68 (International Organization for Standardization/Technical Committee) and to three of its subcommittees. Standards from X9 are available both individually, directly through the ANSI webstore, and as part of a Standards Subscription. If you or your organization are interested in easy, managed, online access to standards that can be shared, a Standards Subscription may be what you need - please contact us at: StandardsSubscriptions@ansi.org or 1-212-642-4980 or Request Proposal Price.

Below are X9's best-selling standards. To find additional standards, please use the search bar above.

 Back to All Publishers Home

ASC X9 TR 31-2018

Interoperable Secure Key Exchange Key Block Specification.

TR 31 describes a method consistent with the requirements of ANS X9.24 Retail Financial Services Symmetric Key Management Part 1 for the secure exchange of keys and other sensitive data between two devices that share a symmetric key exchange key. This method may also be used for the storage of keys under asymmetric key. This document is not a security standard and is not intended to establish security requirements. It is intended instead to provide an interoperable method of implementing security requirements and policies.


ANSI X9.24-3-2017

Retail Financial Services Symmetric Key Management - Part 3: Derived Unique Key Per Transaction

This part of the standard describes the AES DUKPT algorithm (Derived Unique Key Per Transaction), which uses a Base Derivation Key (BDK) to derive unique per device initial keys for transaction originating SCDs, and derive unique per transaction working keys from the initial keys based on the transaction number. Working keys can be used for a variety of functions, such as encryption of PINs, data or other keys, for derivation of other keys, for message authentication, etc. AES DUKPT supports the derivation of AES-128, AES-192, AES-256, and double and triple length TDEA keys from AES-128, AES-192, and AES-256 BDKs


ASC X9 TR 34-2019

Interoperable Method for Distribution of Symmetric Keys Using Asymmetric Techniques: Part 1 - Using Factoring-Based Public Key Cryptography Unilateral Key Transport

TR-34 describes a method consistent with the requirements of ANS X9.24 - 2 Retail Financial Services Symmetric Key Management - Part 2: Using Asymmetric Techniques for the Distribution of Symmetric Keys for the secure exchange of keys using asymmetric techniques between two devices that share asymmetric keys. This method is designed to operate within the existing capabilities of devices used in the retail financial services industry


ANSI X9.24-1-2017

Retail Financial Services Symmetric Key Management Part 1: Using Symmetric Techniques

Covers the manual and automated management of keying material used for financial services such as point-of-sale (POS) transactions (debit and credit), automated teller machine (ATM) transactions, messages among terminals and financial institutions, and interchange messages among acquirers, switches and card issuers. It deals exclusively with management of symmetric keys using symmetric techniques, and specifies the minimum requirements for the management of keying material. Since last publication, this standard has undergone significant modifications in structure and content, including considerations related to the use of the AES algorithm. Implementation details for DUKPT have been moved to part three of X9.24. Addressed herein are activities and requirements related to each stage or event within the key life cycle including generation, distribution, utilization, storage, archiving, replacement and destruction of the keying material. An institution's key management process is not to be implemented or controlled in a manner that has less security, protection, or control than described herein. It is intended that two nodes, if they implement compatible versions of: the same secure key management method, the same secure key identification technique approved for a particular method, and the same key separation methodologies in accordance with this part of this standard, will be interoperable at the application level. Other characteristics may be necessary for node interoperability; however, this part of this standard does not cover such characteristics as message format, communications protocol, transmission speed, or device interface.


ASC X9 TR 34-2019

Interoperable Method for Distribution of Symmetric Keys Using Asymmetric Techniques: Part 1 - Using Factoring-Based Public Key Cryptography Unilateral Key Transport

TR-34 describes a method consistent with the requirements of ANS X9.24 - 2 Retail Financial Services Symmetric Key Management - Part 2: Using Asymmetric Techniques for the Distribution of Symmetric Keys for the secure exchange of keys using asymmetric techniques between two devices that share asymmetric keys. This method is designed to operate within the existing capabilities of devices used in the retail financial services industry


ANSI X9.100-187-2016

Electronic Exchange of Check and Image Data

Since the enactment of Check 21, there has been unprecedented adoption of image exchange. This standard establishes the basis for U.S. check image exchange between financial institutions; all financial values in this standard are assumed to represent U.S. Dollars. This standard establishes requirements and limitations that are compatible with current industry practice. It maintains flexibility in order to accommodate the needs of different institutions and exchange networks. Users of this standard should be aware that most financial exchanges utilize a ôcompanion documentö that defines the specific requirements and implementation rules for exchange within a particular network or institution agreement. The companion document should reference the specific edition of this standard that applies with the specific version of the companion document in use. Generally, US check exchange utilizes the Universal Companion Document (UCD) that can be referenced at the CheckImage Collaborative website, CheckImage Central at www.checkimagecentral.org. This standard, including the normative annexes, establishes the file sequences, record types, and field formats to be used for the electronic exchange of check MICR line, associated check processing data and check images in the form of cash letters. This standard does not address operational, implementation, or settlement needs. These requirements may include, but are not limited to, a choice of: data and image compression, encryption, and transmission specifications and data representation. The informative annexes attached to this standard provide information that may prove useful to those planning to implement the standard.


ANSI X9.24-1 / ANSI X9.24-2 / ASC X9 TR 31 - Symmetric Key Management and Security Package

ANSI X9.24-1 / ANSI X9.24-2 / ASC X9 TR 31 - Symmetric Key Management and Security Package

ANSI X9.24-1 / ANSI X9.24-2 / ASC X9 TR 31 - Symmetric Key Management and Security Package provides guidance on the management of symmetric keys using symmetric techniques as well as asymmetric techniques for the distribution of symmetric keys. It also establishes methods for the secure exchange of keys and sensitive data using symmetric key exchange key. ANSI X9.24-1 / ANSI X9.24-2 / ANSI X9 TR 31 - Symmetric Key Management and Security Package includes:
ANSI X9.24-1-2017
ANSI X9.24-2-2016
ASC X9 TR 31-2018


ANSI X9.24 - Retail Financial Services Set

ANSI X9.24 - Retail Financial Services Set

ANSI X9.24 - Retail Financial Services Set provides guidance on the management of symmetric keys using symmetric techniques as well as asymmetric techniques for the distribution of symmetric keys. ANSI X9.24 - Retail Financial Services Set includes:
ANSI X9.24-1-2017
ANSI X9.24-2-2016
ANSI X9.24-3-2017


ANSI X9.24-2-2016

Retail Financial Services Symmetric Key Management Part 2: Using Asymmetric Techniques for the Distribution of Symmetric Keys

This part of ANS X9.24 establishes requirements and guidelines for the secure management and application-level interoperability of such automated keying operations. This part of this standard addresses symmetric keys managed with asymmetric keys, and asymmetric keys managed with symmetric keys (as in the storage of private keys encrypted with a symmetric master key for storage as cryptograms on a local database)


ASC X9 TR 31-2018

Interoperable Secure Key Exchange Key Block Specification.

TR 31 describes a method consistent with the requirements of ANS X9.24 Retail Financial Services Symmetric Key Management Part 1 for the secure exchange of keys and other sensitive data between two devices that share a symmetric key exchange key. This method may also be used for the storage of keys under asymmetric key. This document is not a security standard and is not intended to establish security requirements. It is intended instead to provide an interoperable method of implementing security requirements and policies.


ANSI Logo

As the voice of the U.S. standards and conformity assessment system, the American National Standards Institute (ANSI) empowers its members and constituents to strengthen the U.S. marketplace position in the global economy while helping to assure the safety and health of consumers and the protection of the environment.

CUSTOMER SERVICE
NEW YORK OFFICE
ANSI HEADQUARTERS