Cryptographic Module Finite State Model

The operation of a cryptographic module shall be specified using a Finite State Model (or equivalent) represented by a state transition diagram and/or a state transition table and state descriptions. The FSM shall be sufficiently detailed to demonstrate that the cryptographic module complies with all of the requirements of this standard.

Documentation shall include the FSM (or equivalent) using a state transition diagram and/or state transition table and state descriptions that [..]

Cryptography – SSP Entry and Output

SSPs may be entered into or output from a module.  If SSPs are entered into or output from a module, theentry or output of SSPs is performed using manual (e.g., entered via a keyboard or output via a visual display) or electronic (e.g., via a smart card/tokens, PC card, other electronic key loading device, or the module operating system) methods or some combination thereof.

Documentation shall specify the SSP entry and [..]

Security – Principles of Authentification

The broadest definition of authentication within computing systems encompasses identity verification, message origin authentication, and message content authentication.
The concept of identity verification specifically applies to principals with information processing and decision making capabilities, including human users, computing systems and processes executing on those systems. From an authentication standpoint, the term “user” applies to all these principals. This guideline focuses on technology and techniques for verifying the identity of human users [..]