Calypso Security Architecture and Key Ceremony – v1.0 | 170202

Document Summary

This document specifies the Calypso Security Architecture and Key Ceremony.

It defines the rules ensuring interoperability and interchangeability of key management systems designed by providers of secret keys:

• the owner of the keys (e.g. public transport authority) has full control over its keys, always being able to entrust them to any third party of its choice by itself, for any evolution of its system;


• the owner of the keys may freely and securely have secure application modules (SAM) manufactured with its keys by the provider of its choice.

In addition to these rules, the present document also contains recommendations for the design of a Calypso Key Ceremony with suitable balance among security and constraints.