Try the new CSRC.nist.gov and let us know what you think!
(Note: Beta site content may not be complete.)
CAVP Testing: Digital Signatures
Algorithm Specifications
Algorithm specifications for current FIPS-approved and NIST-recommended digital signature algorithms are available from the Cryptographic Toolkit.
Current testing includes the following algorithms:
Algorithm Validation Testing Requirements
FIPS 186-4
Digital Signature Algorithm (DSA)
Digital Signature Algorithm Validation System (DSA2VS) specifies validation testing requirements for the DSA algorithm in FIPS 186-4.
Testing Notes
- Prerequisites for DSA testing are listed in the CAVP Frequently Asked Questions (CAVP FAQ) General Question GEN.5.
Elliptic Curve Digital Signature Algorithm (ECDSA)
Elliptic Curve Digital Signature Algorithm (ECDSA) Validation System (ECDSA2VS) specifies validation testing requirements for the ECDSA algorithm in FIPS 186-4.
Testing Notes
- Prerequisites for ECDSA testing are listed in the CAVP Frequently Asked Questions (CAVP FAQ) General Question GEN.5.
RSA Algorithm
RSA Validation System (RSA2VS) specifies validation testing requirements for the RSA algorithm in FIPS 186-4.
Testing Notes
- Prerequisites for RSA testing are listed in the CAVP Frequently Asked Questions (CAVP FAQ) General Question GEN.5.
FIPS 186-2
The following documents specify the algorithm validation testing requirements for FIPS 186-2 (with Change Notice 1, October 5, 2001) and two other versions of the RSA algorithm specified in PKCS#1 v2.1: RSA Cryptography Standard, RSA Laboratories, June 2002:
Digital Signature Algorithm (DSA)
Digital Signature Algorithm Validation System (DSAVS) specifies validation testing requirements for the DSA algorithm in FIPS 186-2.
Testing Notes
- Prerequisites for DSA testing are listed in the CAVP Frequently Asked Questions (CAVP FAQ) General Question GEN.5.
Elliptic Curve Digital Signature Algorithm (ECDSA)
Elliptic Curve Digital Signature Algorithm Validation System (ECDSAVS) specifies validation testing requirements for the ECDSA algorithm in FIPS 186-2.
Testing Notes
- Prerequisites for ECDSA testing are listed in the CAVP Frequently Asked Questions (CAVP FAQ) General Question GEN.5.
RSA Algorithm
RSA Validation System (RSAVS) specifies validation testing requirements for the RSA algorithm in FIPS 186-2 and PKCS 1.5 and PKCS PSS, two other versions of the RSA algorithm specified in PKCS#1 v2.1: RSA Cryptography Standard, RSA Laboratories, June 2002.
Testing Notes
- Prerequisites for RSA testing are listed in the CAVP Frequently Asked Questions (CAVP FAQ) General Question GEN.5.
Validation Lists
Digital signature implementations validated by NIST are found on the DSA, ECDSA, and RSA Validation Lists:
Test Vectors
Use of these test vectors does not replace validation obtained through the CAVP.
The test vectors linked below can be used to informally verify the correctness of digital signature algorithm implementations (in FIPS 186-2 and FIPS 186-4) using the validation systems listed above.
Response files (.rsp): the test vectors are properly formatted in response (.rsp) files. Vendor response files must match this format exactly.
Intermediate results files (.txt): files with intermediate results (.txt) are supplied to help with debugging.
See the README file in each zip file for details.
| Publication | Algorithm Test Vectors |
|---|---|
| FIPS 186-4 | DSA | ECDSA | RSA |
| FIPS 186-2 | DSA | ECDSA | RSA |