Digital Signature Standard (DSS)

Regenscheid, Andrew

doi:10.6028/nist.fips.186-5-draft

Cited by 7 publications

(3 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We added functionality to ECCKAT that parses these test vectors and makes them part of the unit test corpus. Deterministic ECDSA will likely feature in the upcoming renewed FIPS 186-5 [2].…”

Section: Collecting Testsmentioning

confidence: 99%

Set It and Forget It! Turnkey ECC for Instant Integration

Belyavsky¹,

Brumley

Chi-Domínguez

et al. 2020

Annual Computer Security Applications Conference

View full text Add to dashboard Cite

Historically, Elliptic Curve Cryptography (ECC) is an active field of applied cryptography where recent focus is on high speed, constant time, and formally verified implementations. While there are a handful of outliers where all these concepts join and land in realworld deployments, these are generally on a case-by-case basis: e.g. a library may feature such X25519 or P-256 code, but not for all curves. In this work, we propose and implement a methodology that fully automates the implementation, testing, and integration of ECC stacks with the above properties. We demonstrate the flexibility and applicability of our methodology by seamlessly integrating into three real-world projects: OpenSSL, Mozilla's NSS, and the GOST OpenSSL Engine, achieving roughly 9.5x, 4.5x, 13.3x, and 3.7x speedup on any given curve for key generation, key agreement, signing, and verifying, respectively. Furthermore, we showcase the efficacy of our testing methodology by uncovering flaws and vulnerabilities in OpenSSL, and a specification-level vulnerability in a Russian standard. Our work bridges the gap between significant applied cryptography research results and deployed software, fully automating the process.

show abstract

Section: Collecting Testsmentioning

confidence: 99%

Set It and Forget It! Turnkey ECC for Instant Integration

Belyavsky¹,

Brumley

Chi-Domínguez

et al. 2020

Annual Computer Security Applications Conference

View full text Add to dashboard Cite

show abstract

“…Common algorithms that are used to generate and verify digital signatures include RSA, the Digital Signature Algorithm (DSA) 10 , and the Elliptic Curve Digital Signature Algorithm (ECDSA). NIST-approved digital signature algorithms are specified in FIPS 186 [34] [35].…”

Section: Peer Authenticationmentioning

confidence: 99%

“…IPsec is a collection of protocols that assist in protecting communications over networks. 35 This section focuses on the primary component of IPsec-ESP, which protects the confidentiality and integrity of data packets. The section also briefly covers the other IPsec components: the IP Payload Compression Protocol (IPComp) and the Authentication Header (AH) protocol.…”

Section: The Ipsec Protocolsmentioning

confidence: 99%

Guide to IPsec VPNs

Barker¹,

Dang²,

Frankel³

et al. 2020

View full text Add to dashboard Cite

This publication has been developed by NIST in accordance with its statutory responsibilities under the Federal Information Security Modernization Act (FISMA) of 2014, 44 U.S.C. § 3551 et seq., Public Law (P.L.) 113-283. NIST is responsible for developing information security standards and guidelines, including minimum requirements for federal information systems, but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems. This guideline is consistent with the requirements of the Office of Management and Budget (OMB) Circular A-130. Nothing in this publication should be taken to contradict the standards and guidelines made mandatory and binding on federal agencies by the Secretary of Commerce under statutory authority. Nor should these guidelines be interpreted as altering or superseding the existing authorities of the Secretary of Commerce, Director of the OMB, or any other federal official. This publication may be used by nongovernmental organizations on a voluntary basis and is not subject to copyright in the United States. Attribution would, however, be appreciated by NIST.

show abstract