CMVP Approved Sensitive Parameter Generation and Establishment Methods: CMVP Validation Authority Updates to ISO/IEC 24759

Schaffer, Kim; Calis, Alexander

doi:https://doi.org/10.6028/NIST.SP.800-140Dr1

July 19, 2023: URLs for CSRC publication details pages have changed. Legacy URLs should automatically redirect to the new URLs. However, links to the actual publications have NOT changed (e.g., DOIs and PDFs on nvlpubs.nist.gov). Please send inquiries to csrc-inquiry@nist.gov.

NIST SP 800-140D Rev. 1

Withdrawn on July 25, 2023. Superseded by SP 800-140D Rev. 2

CMVP Approved Sensitive Parameter Generation and Establishment Methods: CMVP Validation Authority Updates to ISO/IEC 24759

Documentation Topics

Date Published: May 2022

Supersedes: SP 800-140D (03/20/2020)

Author(s)

Kim Schaffer (NIST), Alexander Calis (NIST)

Abstract

The approved sensitive security parameter generation and establishment methods listed in this publication replace the ones listed in International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 19790 Annex D and ISO/IEC 24759 paragraph 6.16, within the context of the Cryptographic Module Validation Program (CMVP). As a validation authority, the CMVP may supersede Annex D in its entirety.

Keywords

Cryptographic Module Validation Program; CMVP; FIPS 140 testing; FIPS 140-3; ISO/IEC 19790; ISO/IEC 24759; sensitive security parameter establishment methods; sensitive security parameter generation; testing requirement; vendor documentation; vendor evidence

Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.800-140Dr1
Download URL

Supplemental Material:
None available

Other Parts of this Publication:
SP 800-140B
SP 800-140A
SP 800-140
SP 800-140C Rev. 1
SP 800-140F
SP 800-140E

Document History:
08/20/21: SP 800-140D Rev. 1 (Draft)
02/10/22: SP 800-140D Rev. 1 (Draft)
05/20/22: SP 800-140D Rev. 1 (Final)

Topics

Security and Privacy

cryptography, testing & validation