The Inner Circle

Expand all | Collapse all

NIST Requests Public Comments on Several Existing Cryptography Standards and Special Publications

  • 1.  NIST Requests Public Comments on Several Existing Cryptography Standards and Special Publications

    Posted May 11, 2021 10:56:00 AM
    Hi All,

    @Paul Rich

    NIST is in the process of a periodic review and maintenance of its cryptography standards and NIST Special Publications. A description of the review process is available at https://csrc.nist.gov/projects/crypto-publication-review-project

    Currently, we are reviewing the following publications:

    • Federal Information Processing Standard (FIPS) 197, Advanced Encryption Standard (AES), 2001
    • NIST Special Publication (SP) 800-38A, Recommendation for Block Cipher Modes of Operation: Methods and Techniques, 2001
    • NIST SP 800-38A Addendum, Recommendation for Block Cipher Modes of Operation: Three Variants of Ciphertext Stealing for CBC Mode, 2010
    • NIST SP 800-15, Minimum Interoperability Specification for PKI Components (MISPC), Version 1, 1998
    • NIST SP 800-25, Federal Agency Use of Public Key Technology for Digital Signatures and Authentication, 2000
    • NIST SP 800-32, Introduction to Public Key Technology and the Federal PKI Infrastructure, 2001

    We request that public comments on these publications be submitted by June 11, 2021. Comments may address security, implementation, clarity, and/or risk issues as well as relevance to current applications.

    Send comments to [email protected] with the publication number in the Subject, e.g., "Comments on FIPS 197", and "Comments on SP 800-38A." Visit our site to view these publications and learn more about our process.



    ------------------------------
    Michael Roza CPA, CISA, CIA, MBA, Exec MBA
    ------------------------------


  • 2.  RE: NIST Requests Public Comments on Several Existing Cryptography Standards and Special Publications

    Posted 29 days ago
    HI,
    Could the Cryptography be a way to block source code leak in cloud provider services?
    Source Code Leak in Cloud Provider | Advanced Cloud Security Practitioner (ACSP) (cloudsecurityalliance.org)
    Thansk,
    Sofiane

    ------------------------------
    Sofiane Sadeddine
    Data Architect
    Retraite Quebec
    ------------------------------