[12-29-15]--New release of the CAVS algorithm validation testing tool to the CST Laboratories (CAVS18.0). Contains changes to the testable functions in some of the approved cryptographic algorithms to reflect the transition to the use of stronger cryptographic keys and more robust algorithms (as recommended in NIST SP800-131A Revision 1 Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths) effective January 1, 2016. It also includes several corrections to existing bugs. The following changes have been made :
RandPrim - test has different error checking than the rest of the prime tests.
The transition period ends March 29, 2016.
As has been the policy in the past:
The CAVP will also review special conditions on a case-by-case basis.
[12-02-15]--Redesign of CAVP Website.
 [09-30-15]--New release of the CAVS algorithm validation testing tool to the CST Laboratories (CAVS17.9). The following modifications have been made:
The transition period ends December 30, 2015.
As has been the policy in the past:
The CAVP will also review special conditions on a case-by-case basis.
[09-16-15] -- Updated ASKDFVS document.
[06-16-15] -- Removed statement "This requirement must be enforced at the module or product level." from TDES testing announcement posted 06-04-15. The statement should read "As always, even though guidance included in a NIST publication is not testable at the algorithm level, this does not mean it can be ignored."
[06-16-15]--New release of the CAVS algorithm validation testing tool to the CST Laboratories (CAVS17.8). CAVS 17.7 WILL NOT BE USED BECAUSE OF A MINOR BUG FIX. The following modification has been made:
The transition period ends September 16, 2015.
As has been the policy in the past:
The CAVP will also review special conditions on a case-by-case basis.
[06-16-15]--New release of the CAVS algorithm validation testing tool to the CST Laboratories (CAVS17.7). The following modifications have been made:
The transition period ends September 16, 2015.
As has been the policy in the past:
The CAVP will also review special conditions on a case-by-case basis.
[06-04-15]--On February 5, 2015, guidance was posted indicating that there was going to be a change in the TDES algorithm validation testing to support the statement in NIST SP 800-67 Revision 1, dated January 2012 - A key bundle shall not consist of three identical keys. Phase 1 of this guidance was completed and is included in CAVS 17.5 which was released March 4, 2015. This included:
It has been determined that Phase 2 of this guidance posted on February 5, 2015 will not be done. The use of a key bundle consisting of three identical keys in the Known Answer tests is used to test the underlying DES engine(s) in a TDES implementation. The values used for the key and the text for the second and third rounds of the TDES function must be controlled to assure that the targeted components of the TDES algorithm are being tested. The Known Answer test values for TDES, which are based on the Known Answer test values designed initially for DES, assure this. Therefore an implementation must have the ability to use a key bundle consisting of three identical keys for validation testing purposes.
The requirement: A key bundle shall not consist of three identical keys is not testable at the algorithm level. As always, even though guidance included in a NIST publication is not testable at the algorithm level, this does not mean it can be ignored.
[05-14-15]--Updated FIPS 186-4 RSA Test Vectors to include truncated SHA examples.
[05-14-15]--Updated FIPS 186-4 ECDSA Test Vectors to include truncated SHA examples.
[05-14-15]--Updated CAVP Frequently Asked Questions (FAQ) document.
[03-16-15]--New release of the CAVS algorithm validation testing tool to the CST Laboratories (CAVS17.6). The following modifications have been made:
The transition period ends June 16, 2015.
As has been the policy in the past:
The CAVP will also review special conditions on a case-by-case basis.
[03-04-15] -- Modify TDES test vectors to remove Monte1 and MMT1 validation tests.
[03-04-15] -- Updated the SRTP section of The SP800-135 Validation System document.
[03-04-15]--New release of the CAVS algorithm validation testing tool to the CST Laboratories (CAVS17.5). The following modifications have been made:
The transition period ends June 4, 2015.
As has been the policy in the past:
The CAVP will also review special conditions on a case-by-case basis.
[03-03-15]--Feedback from laboratories on the addition of this information can be found at Response from Labs for Collecting Testing Information.
[02-05-15] --Â Change in TDES testing as of March 4, 2015Â --NIST SP 800-67 Revision 1, dated January 2012 states in Section 3.1:
[01-23-15] -- Announced that the CAVP will be adding additional requirements to the vendor/implementation information page to record how and by whom the algorithm testing was performed for this IUT along with some additional testing details. This will replace the current requirements of this information in the CMVP Cryptik tool.
Security and Privacy: assurance, cryptography, testing & validation