In September 2017, this (legacy) site will be replaced with the new site you can see at beta.csrc.nist.rip. At that time, links to this legacy site will be automatically redirected to apporpriate links on the new site.
CAVP Announcements
- [03-16-17] CAVS 21.3 testing tool released.
- [01-30-17] CAVS 21.2 testing tool released.
- [01-12-17] CAVS 21.1 testing tool released.
- [01-05-17] CAVS 21.0 testing tool released.
- [07-06-16] Updated Triple DES sample values posted.
- [07-06-16] CAVS 20.2 testing tool released.
- [06-16-16] Updated XPN test vectors.
- [06-16-16] Updated GCMVS document to include testing for XPN.
- [06-15-16] CAVS 20.1 testing tool released.
- [05-06-16] CAVS 20.0 testing tool released.
- [03-24-16]Updated Components webpage to indicate that the RSASP1 component test for PKCS1.5 and PKCS PSS is identical.
- [03-24-16] CAVS 19.4 testing tool released.
- [03-18-16] CAVS 19.3 testing tool released.
- [03-04-16] CAVS 19.2 testing tool released.
- [02-23-16] CAVS 19.1 testing tool released.
- [02-19-16] CAVP Guidance on Adding Unique Identifier To Nfile Email
- [02-17-16] CAVP and CMVP Guidance on Enforcing Algorithm Testing Information more announcements
CAVP Notices
- No recent notices. more notices
Cryptographic Algorithm
Validation Program (CAVP)
Overview
The Cryptographic Algorithm Validation Program (CAVP) provides validation testing of FIPS-approved and NIST-recommended cryptographic algorithms and their individual components. Cryptographic algorithm validation is a prerequisite of cryptographic module validation.
Vendors may use any of the NVLAP-accredited Cryptographic and Security Testing (CST) Laboratories to test algorithm implementations.
An algorithm implementation successfully tested by a lab and validated by NIST is added to an appropriate validation list, which identifies the vendor, implementation, operational environment, validation date and algorithm details.
Tests
Currently, CAVP tests the following cryptographic algorithms. Follow the links to algorithm specifications, validation testing requirements, validation lists and test vectors.
Other algorithm testing has been retired: DES, MAC, Skipjack (encryption only), and ANSI X9.17, RNG.
CAVP Management Manual
Last update: 06-24-2009
The CAVP Management Manual provides effective guidance for the CAVP Validation Authorities, CST laboratories, and vendors who participate in the program. It outlines the management activities and specific responsibilities of the various participating groups; however, it does not include any cryptographic standards. The manual may also interest consumers who acquire validated cryptographic modules and validated cryptographic algorithm implementations.
CAVP FAQ
Last update: 05-06-2016
The CAVP FAQ addresses many questions raised by the testing laboratories; it includes a section of general questions and sections for most of the tested algorithms. The FAQ addresses:
- interpretations of algorithm specifications;
- programmatic questions about the CAVP;
- the Cryptographic Algorithm Validation System (CAVS) tool; and
- information required during validation.
The FAQ is primarily intended for use by the testing labs. Vendors may also find the information useful when submitting their algorithms for testing.
The CAVP was established in July 1995 by NIST and the Government of Canada's Communications Security Establishment (CSE). CSD's Security Testing, Validation, and Measurement Group (STVMG) manages the validation testing of cryptographic modules and their underlying cryptographic algorithms through the CAVP and CMVP.