CEN/TS 17814:2022
(Main)Building hardware - Master Key System data protection - Guidance
Building hardware - Master Key System data protection - Guidance
This document specifies requirements and procedures to achieve and maintain protection of data and sensitive information related to mechanical Master Key Systems and other mechanical key systems where customer or application related data are being processed throughout the process of planning, production, installation, and maintenance.
The requirements and test methods for mechanical cylinder locks is covered by EN 1303.
Reference is made to EN 1303 and Annexes relating to Master Key Systems (MKS).
Requirements relating to the information security of key based and non-key based electronic cylinders are not covered.
Schlösser und Baubeschläge - Datenschutz bei Schließanlagen - Leitfaden
Dieses Dokument legt Anforderungen und Verfahren zum Erreichen und Aufrechterhalten des Schutzes von Daten und sensiblen Informationen in Bezug auf mechanische Schließanlagen und andere mechanische Schlüsselsysteme fest, bei denen während der Planung, Herstellung, Installation und Instandhaltung kunden- oder anwendungsbezogene Daten verarbeitet werden.
Die Anforderungen und Prüfverfahren für mechanische Zylinderschlösser werden in EN 1303 behandelt.
Es wird auf EN 1303 und die sich auf Schließanlagen beziehenden Anhänge verwiesen.
Anforderungen an die Informationssicherheit von schlüsselbasierten und nicht schlüsselbasierten elektronischen Schließzylindern werden nicht behandelt.
Quincaillerie du bâtiment - Spécification technique pour la protection des données du système d'organigramme de clé - Guide
Le présent document spécifie les exigences et les procédures permettant d’assurer et de maintenir la protection des données et des informations sensibles liées aux systèmes d'organigramme de clé mécanique et à d’autres systèmes de clé mécanique où les données liées au client ou à des applications sont traitées tout au long du processus de planification, de production, d’installation, et de maintenance.
Les exigences et les méthodes d’essai pour les serrures à cylindre mécanique sont couvertes par l’EN 1303.
Il est fait référence à l’EN 1303 et à ses Annexes relatives aux systèmes d'organigramme de clé (MKS).
Les exigences relatives à la sécurité des informations des cylindres électroniques manœuvrés avec clé ou sans clé ne sont pas couvertes.
Ključavnice in stavbno okovje - Zaščita podatkov sistema glavnega ključa - Navodila
Ta dokument določa zahteve in postopke za doseganje ter ohranjanje zaščite podatkov in občutljivih informacij, povezanih z mehanskimi sistemi glavnih ključev in drugimi mehanskimi sistemi ključev, pri katerih se v procesu načrtovanja, proizvodnje, namestitve in vzdrževanja obdelujejo podatki, povezani s strankami ali aplikacijami.
Zahteve in preskusne metode za mehanske cilindrične ključavnice so zajete v standardu EN 1303.
V zvezi s sistemi glavnih ključev (MKS) se ta dokument sklicuje na standard EN 1303 in njegove dodatke.
Zahteve v zvezi z informacijsko varnostjo elektronskih cilindrov s ključem in brez niso zajete.
General Information
Standards Content (Sample)
SLOVENSKI STANDARD
01-september-2022
Ključavnice in stavbno okovje - Zaščita podatkov sistema glavnega ključa -
Navodila
Building hardware - Master Key System data protection - Guidance
Schlösser und Baubeschläge - Datenschutz bei Schließanlagen - Leitfaden
Quincaillerie du bâtiment - Spécification technique pour la protection des données du
système d'organigramme de clé - Guide
Ta slovenski standard je istoveten z: CEN/TS 17814:2022
ICS:
91.190 Stavbna oprema Building accessories
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
CEN/TS 17814
TECHNICAL SPECIFICATION
SPÉCIFICATION TECHNIQUE
June 2022
TECHNISCHE SPEZIFIKATION
ICS 91.190
English Version
Building hardware - Master Key System data protection -
Guidance
Quincaillerie du bâtiment - Spécification technique Schlösser und Baubeschläge - Datenschutz bei
pour la protection des données du système Schließanlagen - Leitfaden
d'organigramme de clé - Guide
This Technical Specification (CEN/TS) was approved by CEN on 17 May 2022 for provisional application.
The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to
submit their comments, particularly on the question whether the CEN/TS can be converted into a European Standard.
CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS
available promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in
parallel to the CEN/TS) until the final decision about the possible conversion of the CEN/TS into an EN is reached.
CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway,
Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and
United Kingdom.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION
EUROPÄISCHES KOMITEE FÜR NORMUNG
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2022 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 17814:2022 E
worldwide for CEN national Members.
Contents Page
European foreword . 3
Introduction . 4
1 Scope . 5
2 Normative references . 5
3 Terms and definitions . 5
4 Requirements . 5
4.1 Planning and ordering of Master Key Systems . 5
4.2 Transmission of Master Key Systems lock charts . 6
4.3 General data handling requirements . 6
4.4 Calculation of Master Key Systems . 6
4.5 Manufacturing of Master Key Systems . 6
4.6 Preparation of keys belonging to Master Key Systems . 6
4.7 Shipment of Master Key System cylinders and keys . 7
4.8 Installation of Master Key Systems. 7
4.9 Management of Master Key System related data during system’s lifetime . 7
5 Verification . 7
5.1 Planning and ordering of Master Key Systems . 7
5.2 Transmission of Master Key System lock charts . 7
5.3 General data handling requirements . 8
5.4 Calculation of Master Key Systems . 8
5.5 Manufacturing of Master Key Systems . 8
5.6 Preparation of keys belonging to Master Key Systems . 8
5.7 Shipment of Master Key System cylinders and keys . 8
5.8 Installation of Master Key Systems. 9
5.9 Management of Master Key System related data during system’s lifetime . 9
Bibliography . 10
European foreword
This document (CEN/TS 17814:2022) has been prepared by Technical Committee CEN/TC 33 “Doors,
windows, shutters, building hardware and curtain walling”, the secretariat of which is held by AFNOR.
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CEN shall not be held responsible for identifying any or all such patent rights.
Any feedback and questions on this document should be directed to the users’ national standards body.
A complete listing of these bodies can be found on the CEN website.
According to the CEN-CENELEC Internal Regulations, the national standards organisations of the
following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria, Croatia,
Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland,
Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Republic of North
Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United
Kingdom.
Introduction
to provide guidance for the handling of data that is used in the design, manufacture, supply, installation,
and maintenance of master key systems, constructed from mechanical cylinder locks. This document
provides guidance to working methods and aims to promote this as best practice.
This document has two main sections: Clause 4 Requirements containing the process of handling data
from design through to system maintenance and Clause 5 Verification providing methods of best practice
to ensure compliance with this specification.
It is recommended that any company claiming compliance with this technical specification, carries out
rd
3 party certification of the processes used for Master Key Systems that are provided in accordance with
this document. The process of supplying a Master Key System may be provided by multiple parties within
the supply chain, therefore it is important that manufacturers and suppliers clearly indicate to which
areas of this document they claim compliance.
1 Scope
This document specifies requirements and procedures to achieve and maintain protection of data and
sensitive information related to mechanical Master Key Systems and other mechanical key systems
where customer or application related data are being processed throughout the process of planning,
production, installation, and maintenance.
The requirements and test methods for mechanical cylinder locks is covered by EN 1303.
Reference is made to EN 1303 and Annexes relating to Master Key Systems (MKS).
Requirements relating to the information security of key based and non-key based electronic cylinders
are not covered.
2 Normative references
The following documents are referred to in the text in such a way that some or all of their content
constitutes requirements of this document. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any amendments) applies.
EN 1303:2015, Building hardware - Cylinders for locks - Requirements and test methods
3 Terms and definitions
For the purposes of this document, the terms and definitions given in EN 1303:2015 and the following
apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:
— IEC Electropedia: available at https://www.electropedia.org/
— ISO Online browsing platform: available at https://www.iso.org/obp
3.1
Master Key System
MKS
combination of lock cylinders and related keys with different codings and/or profiles which are in
functional relation
3.2
MKS/cylinder manufacturer
company who is owning the design of the cylinders and supplies either the assembled cylinders or
components for assembly of cylinders
Note 1 to entry: See 3.1.
4 Requirements
4.1 Planning and ordering of Master Key Systems
Data to calculate and produce a Master Key System always must be provided without personal
data/information related to the individual key holders. Therefore, key plans, org charts or any other
documents/information provided to plan a system shall always be created without showing any personal
data (e.g. name, function, employee no., etc.).
Key marking shall avoid any obvious reference to its function, the location of the door and/or key holder.
Suitable processes and security arrangements shall be established to ensure that orders for Master Key
System keys and cylinders can be placed by authorized persons only.
4.2 Transmission of Master Key Systems lock charts
Electronic transmission of lock charts shall use state of the art encrypted communication such as:
— MKS manufacturers’ planning and ordering software with data encryption;
— third party planning and ordering software with data encryption (software shall meet data
protection and functional requirements as specified by MKS manufacturer);
— E-mail systems with encryption function enabled;
— in cases where hard copy lock charts are required transfer shall be via registered mail or trackable
courier service.
4.3 General data handling requirements
Access management for secure server rooms and/or secure archives with paper files and/or security
cards or other media used for identification shall be in place.
Storage of electronic data shall be in a secure file system or secure database environment.
Daily backup files shall be created and protected.
A matrix of roles and access permissions shall be defined and continuously reviewed to maintain security
procedures.
Persons with access to MKS calculation software and/or data shall be security screened/checked (e.g.
criminal record) and be conversant with data protection requirements.
4.4 Calculation of Master Key Systems
Calculation of MKS shall be done using a calculation software tool which is either provided by the cylinder
manufacturer (design owner) or third-party calculation software that has been approved by the cylinder
manufacturer.
MKS calculations shall be in full accordance with the specific rules defined by the cylinder manufacturers.
4.5 Manufacturing of Master Key Systems
Access to production/assembly area shall be restricted to authorized persons only.
Access to assembly related paperwork or data shall be restricted to authorized persons only. After use,
the assembly related paperwork or data shall be destroyed/deleted or stored in a secure environment.
Test keys and incorrectly produced keys shall be destroyed or kept in a secure environment without
direct reference to the location at which the MKS is installed.
The MKS manufacturing data set shall not provide any reference to the location at which the MKS is
installed.
4.6 Preparation of keys belonging to Master Key Systems
Access to key cutting machines shall be controlled and limited to authorized persons only.
Key blanks shall be stored in a secure and access-controlled environment.
Records about key blank inventory, covering cut keys, miss-cut keys and disposed keys shall be kept.
4.7 Shipment of Master Key System cylinders and keys
Security cards or other media used for identification as well as master keys shall be sent in sealed tamper-
proof and non-transparent envelopes/enclosures.
It shall be agreed between the manufacturer and the customer whether the security card or other media
used for identification and/or the master keys shall be included in MKS shipments or sent separately.
Shipment of MKS, either complete or in part (cylinders and/or keys), shall always be made by registered
mail or trackable courier service.
4.8 Installation of Master Key Systems
A hand-over audit shall be conducted to ensure that all p
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.