In September 2017, this (legacy) site will be replaced with the new site you can see at beta.csrc.nist.rip. At that time, links to this legacy site will be automatically redirected to apporpriate links on the new site.
Past Workshops
Block Cipher Modes Workshop 1
October 20, 2000 - Baltimore, Maryland, USA
In July 2000, NIST announced an initial public workshop for the presentation and discussion of block cipher modes of operation. The papers, presentations, and discussions from that workshop are summarized in a workshop report.
NIST received a number of public comments in response to its announcement of the "Modes of Operation" effort.
Papers and Presentation
The table below contains links to the papers and presentations from the first workshop.
| Title | Author(s) |
| Comparing Cryptographic Modes of Operation Using Flow Diagrams - Presentation only. | Lyndon Pierson |
| CTR-Mode Encryption Presentation |
Helger Lipmaa, Phillip Rogaway, David Wagner |
| Encryption Modes with Almost-Free Message Integrity Presentation IBM Patent Letter |
Charanjit S. Jutla |
| A Suggestion for Handling Arbitrary-Length Messages with the CBC MAC Presentation |
John Black, Phillip Rogaway |
|
Fast Encryption Authentication: XCBC Encryption and XECB Authencation Modes (10/27/2000) On Message Integrity in Symmetric Encryption (11/10/2000) Presentation (combined) |
Virgil D. Gligor, Pompiliu Donsecu |
| Key Feedback Mode: A Keystream Generator with Provable Security Presentation |
Johan Håstad, Mats Naslund |
| Block Chaining Modes of Operation Presentation (given by Bart Preneel) |
Lars Knudsen |
| OCB Mode: Parallelizable Authenticated Encryption PMAC: A Parallelizable Message Authentication Code Presentation (combined) |
Phillip Rogaway |
Back to Top
Block Cipher Modes Workshop 2
August 24, 2001 - Goleta, California, USA
NIST held the Second Modes of Operation Workshop to continue to facilitate the analysis and development of new modes. The agenda of the workshop was to:
- Present and discuss modes proposals
- Discuss technical comments on the NIST "Recommendation for Block Cipher Modes of Operation"
- Discuss of the next steps in the process and related issues
The presentations, and discussions from the workshop are summarized in a workshop report.
Papers and Presentation
The table below contains links to the papers and presentations from the first workshop.
| Title | Speaker |
| XCBC: A Version of the CBC MAC for Handling Arbitrary-Length Messages | John Black |
| RMAC: A randomized CBC-MAC beyond the Birthday Paradox Limit | Antoine Joux |
| PMAC: A Parallelizable Message Authentication Code | Phillip Rogaway |
| OCB Mode | Phillip Rogaway |
| The XCBC-XOR, XECB-XOR and XECB-MAC Modes | Virgil Gligor |
| Parallelizable Encryption Mode with Almost Free Message Integrity | Charanjit Jutla |
| Cryptographic Modes of Operation for the Internet [paper] | Matt Blaze |
| Brief Summaries (of 2DEM, ABC, KFB, PCFB, and AES-hash) | Aaron Nelson (NIST) |
| Selected Comments and Issues on the draft NIST "Recommendation for Block Cipher Modes of Operation" | Morris Dworkin (NIST) |
| Modes of Operation: Where do we go from here? | Bill Burr (NIST) |