需要保护模块敏感安全参数的加密模块采用物理安全机制。ISO/IEC TS 30104:2015阐述了安全环境风险需要此类机制支持的产品的安全保证。本技术规范涉及以下主题: -针对不同类型硬件实施例的物理安全攻击的调查，包括对已知物理攻击的描述，从需要最少技能或资源的简单攻击到需要经过培训的技术人员和大量资源的复杂攻击； -关于设计篡改保护机制和缓解这些攻击的方法的原则、最佳实践和技术的指南； 和 -关于硬件篡改保护机制评估或测试的指南，以及涉及硬件篡改评估和测试的现行标准和测试程序的参考。 ISO/IEC TS 30104:2015中的信息对产品开发人员设计硬件安全实施以及测试或评估最终产品非常有用。目的是根据被保护资产的复杂性、成本和风险确定保护方法和攻击方法。通过这种方式，可以在各种系统和需求中提供经济高效的保护。

Physical security mechanisms are employed by cryptographic modules where the protection of the modules sensitive security parameters is desired. ISO/IEC TS 30104:2015 addresses how security assurance can be stated for products where the risk of the security environment requires the support of such mechanisms. This Technical Specification addresses the following topics: - a survey of physical security attacks directed against different types of hardware embodiments including a description of known physical attacks, ranging from simple attacks that require minimal skill or resources, to complex attacks that require trained, technical people and considerable resources; - guidance on the principles, best practices and techniques for the design of tamper protection mechanisms and methods for the mitigation of those attacks; and - guidance on the evaluation or testing of hardware tamper protection mechanisms and references to current standards and test programs that address hardware tamper evaluation and testing. The information in ISO/IEC TS 30104:2015 is useful for product developers designing hardware security implementations, and testing or evaluation of the final product. The intent is to identify protection methods and attack methods in terms of complexity, cost and risk to the assets being protected. In this way cost effective protection can be produced across a wide range of systems and needs.