In September 2017, this (legacy) site will be replaced with the new site you can see at beta.csrc.nist.rip. At that time, links to this legacy site will be automatically redirected to apporpriate links on the new site.

View the beta site
NIST Logo and ITL Banner Link to the NIST Homepage Link to the ITL Homepage Link to the NIST Homepage

Past Workshops

Block Cipher Modes Workshop 1

October 20, 2000 - Baltimore, Maryland, USA

In July 2000, NIST announced an initial public workshop for the presentation and discussion of block cipher modes of operation. The papers, presentations, and discussions from that workshop are summarized in a workshop report.

NIST received a number of public comments in response to its announcement of the "Modes of Operation" effort.

Papers and Presentation

The table below contains links to the papers and presentations from the first workshop.

Title Author(s)
Comparing Cryptographic Modes of Operation Using Flow Diagrams - Presentation only. Lyndon Pierson
CTR-Mode Encryption
    Presentation
Helger Lipmaa,
Phillip Rogaway,
David Wagner
Encryption Modes with Almost-Free Message Integrity
    Presentation
    IBM Patent Letter
Charanjit S. Jutla
A Suggestion for Handling Arbitrary-Length Messages with the CBC MAC
    Presentation
John Black,
Phillip Rogaway
Fast Encryption Authentication: XCBC Encryption and XECB Authencation Modes (10/27/2000)
On Message Integrity in Symmetric Encryption (11/10/2000)
    Presentation (combined)
Virgil D. Gligor,
Pompiliu Donsecu
Key Feedback Mode: A Keystream Generator with Provable Security
    Presentation
Johan Håstad,
Mats Naslund
Block Chaining Modes of Operation
    Presentation (given by Bart Preneel)
Lars Knudsen
OCB Mode: Parallelizable Authenticated Encryption
PMAC: A Parallelizable Message Authentication Code

    Presentation (combined)
Phillip Rogaway


Back to Top

Block Cipher Modes Workshop 2

August 24, 2001 - Goleta, California, USA

NIST held the Second Modes of Operation Workshop to continue to facilitate the analysis and development of new modes. The agenda of the workshop was to:

  • Present and discuss modes proposals
  • Discuss technical comments on the NIST "Recommendation for Block Cipher Modes of Operation"
  • Discuss of the next steps in the process and related issues

The presentations, and discussions from the workshop are summarized in a workshop report.

Papers and Presentation

The table below contains links to the papers and presentations from the first workshop.

Title Speaker
XCBC: A Version of the CBC MAC for Handling Arbitrary-Length Messages John Black
RMAC: A randomized CBC-MAC beyond the Birthday Paradox Limit Antoine Joux
PMAC: A Parallelizable Message Authentication Code Phillip Rogaway
OCB Mode Phillip Rogaway
The XCBC-XOR, XECB-XOR and XECB-MAC Modes Virgil Gligor
Parallelizable Encryption Mode with Almost Free Message Integrity Charanjit Jutla
Cryptographic Modes of Operation for the Internet [paper] Matt Blaze
Brief Summaries (of 2DEM, ABC, KFB, PCFB, and AES-hash) Aaron Nelson
(NIST)
Selected Comments and Issues on the draft NIST "Recommendation for Block Cipher Modes of Operation" Morris Dworkin
(NIST)
Modes of Operation: Where do we go from here? Bill Burr
(NIST)