The Cryptographic Module Validation Program Symposium 2004 will be held on September 14-15, 2004 at the DoubleTree Hotel & Executive Meeting Center in Rockville, MD. NIST and the Communications Security Establishment (CSE) invite you to this event.

The CMVP Symposium will include presentations and discussions on the FIPS 140-2, Security Requirements for Cryptographic Modules, supporting documents such as the Derived Test Requirements and Implementation Guidance, cryptographic algorithm testing suites, expectations, future direction, panel discussions from Federal and user agencies and laboratory panel discussions.

Federal agencies and departments are required to comply with FIPS 140-2. This involves the acquisition of validated cryptographic modules (which may be incorporated in a product/application) for protecting sensitive but unclassified data. Cryptographic modules are used to provide security services such as confidentially, integrity, and authentication. FIPS 140-2 provides users with 1) a specification of security features that are required at each security level, 2) flexibility in choosing security requirements and environments, and 3) a guide to ensuring the modules incorporate necessary security features.

Who should attend?

• Security IT Developers (hardware and software)
• Security IT Users
• Cryptographic Module Vendors
• Procurement Specialists
• Testing Laboratories
• IT Managers

Sessions and Topics:

• FIPS 140-2 Tutorial and Status
• Navigating through the testing processo Hot Topics in Testingo Future direction - FIPS 140-3 
• New algorithm test suites with more to comeo New Tool Development
• National Voluntary Laboratory Accreditation Program (NVLAP)
• Panel Discussion - User's and Vendor's
• International Topicso International Organization for Standardization (ISO) directions
• Cryptographic Module Tester Competency Program
• FISMA Implementation
• CMVP Laboratory Panel