SP 800-131 A-Rev.1
DRAFT Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths
NIST requests comments on a revision of
Special Publication (SP) 800-131A, Transitions:
Recommendation for Transitioning the Use of Cryptographic
Algorithms and Key Lengths, which was originally published
in January 2011. The most significant differences in this
revision are 1) declaring the Dual_EC_DRBG as a disallowed
method for random bit generation, 2) the deprecation of the
non-approved key-agreement and key-transport schemes, and the
non-approved key-wrapping methods through December 31, 2017, and
the intent to disallow them thereafter, and 3) the inclusion of
the SHA-3 hash functions specified in FIPS 202.
Please submit comments by August 14, 2015 to
CryptoTransitions@nist. Gov, with "SP 800-131A Comments" in
the subject line.
Draft SP 800-131A, Revision 1
Abstract At the start of the 21st century, the National Institute of Standards and Technology (NIST) began the task of providing cryptographic key management guidance, which includes defining and implementing appropriate key management procedures, using algorithms that adequately protect sensitive information, and planning ahead for possible changes in the use of cryptography because of algorithm breaks or the availability of more powerful computing techniques. NIST Special Publication (SP) 800-57, Part 1 was the first document produced in this effort, and includes a general approach for transitioning from one algorithm or key length to another. This Recommendation (SP 800-131A) provides more specific guidance for transitions to the use of stronger cryptographic keys and more robust algorithms. |