Secure Hash Standard (SHS) (SHA-1 algorithm)

• Overview:
  Details regarding the Secure Hash Algorithm (SHA-1) are available on the CryptoToolkit page. SHA-256, SHA-384, and SHA-512 are also FIPS-approved method for secure hashing, but testing for those algorithms has not been implemented yet.

• Testing Requirements:
  Currently, CMT labs can test for conformance to the SHA-1 algorithm in FIPS 180-1.

  The CMT labs are currently using a software testing tool, the Digital Signature Standard Validation System (DSSVS), v2.3, to test DSA/SHA-1 and SHA-1 implementations. The various tests are described in the DSSVS User's Guide. Vendors considering having an SHA-1 implementation tested should consult this document for a description of the tests and the correct response file formats (response files are generated using the tested implementation, and these files are then used by the DSSVS tool to verify the correctness of the implementation).

• Validation List:
  NIST maintains the current SHA-1 Validation List.

• Other Information:
  
  • SHA-1 Sample Vectors - This file describes tests and vectors that can be used to informally verify the correctness of an SHA-1 implementation. However, use of these vectors does not take the place of validation obtained through the Cryptographic Module Validation Program.

Last Modified: May 7, 2003
Computer Security Division
National Institute of Standards and Technology