Cryptography standards

Last updated September 20, 2023

There are a number of standards related to cryptography . Standard algorithms and protocols provide a focus for study; standards for popular applications attract a large amount of cryptanalysis.

Encryption standards

Data Encryption Standard (DES, now obsolete)
Advanced Encryption Standard (AES)
RSA the original public key algorithm
OpenPGP

Hash standards

MD5 128-bit (obsolete)
SHA-1 160-bit (obsolete)
SHA-2 available in 224, 256, 384, and 512-bit variants
HMAC keyed hash
PBKDF2 Key derivation function (RFC 2898)

Digital signature standards

Digital Signature Standard (DSS), based on the Digital Signature Algorithm (DSA)
RSA
Elliptic Curve DSA

Public-key infrastructure (PKI) standards

X.509 Public Key Certificates

Wireless Standards

Wired Equivalent Privacy (WEP), severely flawed and superseded by WPA
Wi-Fi Protected Access (WPA) better than WEP, a 'pre-standard' partial version of 802.11i
802.11i a.k.a. WPA2, uses AES and other improvements on WEP
A5/1 and A5/2 cell phone encryption for GSM

U.S. Government Federal Information Processing Standards (FIPS)

FIPS PUB 31 Guidelines for Automatic Data Processing Physical Security and Risk Management 1974
FIPS PUB 46-3 Data Encryption Standard (DES) 1999
FIPS PUB 73 Guidelines for Security of Computer Applications 1980
FIPS PUB 74 Guidelines for Implementing and Using the NBS Data Encryption Standard 1981
FIPS PUB 81 DES Modes of Operation 1980
FIPS PUB 102 Guideline for Computer Security Certification and Accreditation 1983
FIPS PUB 112 Password Usage 1985, defines 10 factors to be considered in access control systems that are based on passwords
FIPS PUB 113 Computer Data Authentication 1985, specifies a Data Authentication Algorithm (DAA) based on DES, adopted by the Department of Treasury and the banking community to protect electronic fund transfers.
FIPS PUB 140-2 Security Requirements for Cryptographic Modules 2001, defines four increasing security levels
FIPS PUB 171 Key Management Using ANSI X9.17 (ANSI X9.17-1985) 1992, based on DES
FIPS PUB 180-2 Secure Hash Standard (SHS) 2002 defines the SHA family
FIPS PUB 181 Automated Password Generator (APG) 1993
FIPS PUB 185 Escrowed Encryption Standard (EES) 1994, a key escrow system that provides for decryption of telecommunications when lawfully authorized.
FIPS PUB 186-2 Digital Signature Standard (DSS) 2000
FIPS PUB 190 Guideline for the Use of Advanced Authentication Technology Alternatives 1994
FIPS PUB 191 Guideline for the Analysis of local area network Security 1994
FIPS PUB 196 Entity Authentication Using Public Key Cryptography 1997
FIPS PUB 197 Advanced Encryption Standard (AES) 2001
FIPS PUB 198 The Keyed-Hash Message Authentication Code (HMAC) 2002

Internet Requests for Comments (RFCs)

Classified Standards

EKMS NSA's Electronic Key Management System
FNBDT NSA's secure narrow band voice standard
Fortezza encryption based on portable crypto token in PC Card format
STE secure telephone
STU-III older secure telephone
TEMPEST prevents compromising emanations

Other

IPsec Virtual Private Network (VPN) and more
IEEE P1363 covers most aspects of public-key cryptography
Transport Layer Security (formerly SSL)
SSH secure Telnet and more
Content Scrambling System (CSS, the DVD encryption standard, broken by DeCSS)
Kerberos authentication standard
RADIUS authentication standard
ANSI X9.59 electronic payment standard
Common Criteria Trusted operating system standard
CRYPTREC Japanese Government's cryptography recommendations

Related Research Articles

Kerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. Its designers aimed it primarily at a client–server model, and it provides mutual authentication—both the user and the server verify each other's identity. Kerberos protocol messages are protected against eavesdropping and replay attacks.

<span class="mw-page-title-main">HMAC</span> Computer communications hash algorithm

In cryptography, an HMAC is a specific type of message authentication code (MAC) involving a cryptographic hash function and a secret cryptographic key. As with any MAC, it may be used to simultaneously verify both the data integrity and authenticity of a message.

In computing, Internet Protocol Security (IPsec) is a secure network protocol suite that authenticates and encrypts packets of data to provide secure encrypted communication between two computers over an Internet Protocol network. It is used in virtual private networks (VPNs).

<span class="mw-page-title-main">Triple DES</span> Block cipher

In cryptography, Triple DES, officially the Triple Data Encryption Algorithm, is a symmetric-key block cipher, which applies the DES cipher algorithm three times to each data block. The Data Encryption Standard's (DES) 56-bit key is no longer considered adequate in the face of modern cryptanalytic techniques and supercomputing power. A CVE released in 2016, CVE-2016-2183 disclosed a major security vulnerability in DES and 3DES encryption algorithms. This CVE, combined with the inadequate key size of DES and 3DES, led to NIST deprecating DES and 3DES for new applications in 2017, and for all applications by the end of 2023. It has been replaced with the more secure, more robust AES.

A cryptographically secure pseudorandom number generator (CSPRNG) or cryptographic pseudorandom number generator (CPRNG) is a pseudorandom number generator (PRNG) with properties that make it suitable for use in cryptography. It is also loosely known as a cryptographic random number generator (CRNG).

Articles related to cryptography include:

Wi-Fi Protected Access (WPA), Wi-Fi Protected Access 2 (WPA2), and Wi-Fi Protected Access 3 (WPA3) are the three security certification programs developed after 2000 by the Wi-Fi Alliance to secure wireless computer networks. The Alliance defined these in response to serious weaknesses researchers had found in the previous system, Wired Equivalent Privacy (WEP).

A cryptographic hash function (CHF) is a hash algorithm that has special properties desirable for a cryptographic application:

In cryptography, a key derivation function (KDF) is a cryptographic algorithm that derives one or more secret keys from a secret value such as a master key, a password, or a passphrase using a pseudorandom function. KDFs can be used to stretch keys into longer keys or to obtain keys of a required format, such as converting a group element that is the result of a Diffie–Hellman key exchange into a symmetric key for use with AES. Keyed cryptographic hash functions are popular examples of pseudorandom functions used for key derivation.

In cryptography, a message authentication code (MAC), sometimes known as an authentication tag, is a short piece of information used for authenticating a message. In other words, to confirm that the message came from the stated sender and has not been changed. The MAC value protects a message's data integrity, as well as its authenticity, by allowing verifiers to detect any changes to the message content.

In cryptography, a weak key is a key, which, used with a specific cipher, makes the cipher behave in some undesirable way. Weak keys usually represent a very small fraction of the overall keyspace, which usually means that, a cipher key made by random number generation is very unlikely to give rise to a security problem. Nevertheless, it is considered desirable for a cipher to have no weak keys. A cipher with no weak keys is said to have a flat, or linear, key space.

IEEE 802.11i-2004, or 802.11i for short, is an amendment to the original IEEE 802.11, implemented as Wi-Fi Protected Access II (WPA2). The draft standard was ratified on 24 June 2004. This standard specifies security mechanisms for wireless networks, replacing the short Authentication and privacy clause of the original standard with a detailed Security clause. In the process, the amendment deprecated broken Wired Equivalent Privacy (WEP), while it was later incorporated into the published IEEE 802.11-2007 standard.

In cryptography, PBKDF1 and PBKDF2 are key derivation functions with a sliding computational cost, used to reduce vulnerability to brute-force attacks.

NSA Suite B Cryptography was a set of cryptographic algorithms promulgated by the National Security Agency as part of its Cryptographic Modernization Program. It was to serve as an interoperable cryptographic base for both unclassified information and most classified information.

In cryptography, key stretching techniques are used to make a possibly weak key, typically a password or passphrase, more secure against a brute-force attack by increasing the resources it takes to test each possible key. Passwords or passphrases created by humans are often short or predictable enough to allow password cracking, and key stretching is intended to make such attacks more difficult by complicating a basic step of trying a single password candidate. Key stretching also improves security in some real-world applications where the key length has been constrained, by mimicking a longer key length from the perspective of a brute-force attacker.

Network Security Services (NSS) is a collection of cryptographic computer libraries designed to support cross-platform development of security-enabled client and server applications with optional support for hardware TLS/SSL acceleration on the server side and hardware smart cards on the client side. NSS provides a complete open-source implementation of cryptographic libraries supporting Transport Layer Security (TLS) / Secure Sockets Layer (SSL) and S/MIME. NSS releases prior to version 3.14 are tri-licensed under the Mozilla Public License 1.1, the GNU General Public License, and the GNU Lesser General Public License. Since release 3.14, NSS releases are licensed under GPL-compatible Mozilla Public License 2.0.

The following outline is provided as an overview of and topical guide to cryptography:

The IBM 4767 PCIe Cryptographic Coprocessor is a hardware security module (HSM) that includes a secure cryptoprocessor implemented on a high-security, tamper resistant, programmable PCIe board. Specialized cryptographic electronics, microprocessor, memory, and random number generator housed within a tamper-responding environment provide a highly secure subsystem in which data processing and cryptography can be performed. Sensitive key material is never exposed outside the physical secure boundary in a clear format.

The IBM 4768 PCIe Cryptographic Coprocessor is a hardware security module (HSM) that includes a secure cryptoprocessor implemented on a high-security, tamper resistant, programmable PCIe board. Specialized cryptographic electronics, microprocessor, memory, and random number generator housed within a tamper-responding environment provide a highly secure subsystem in which data processing and cryptography can be performed. Sensitive key material is never exposed outside the physical secure boundary in a clear format.

The IBM 4769 PCIe Cryptographic Coprocessor is a hardware security module (HSM) that includes a secure cryptoprocessor implemented on a high-security, tamper resistant, programmable PCIe board. Specialized cryptographic electronics, microprocessor, memory, and random number generator housed within a tamper-responding environment provide a highly secure subsystem in which data processing and cryptography can be performed. Sensitive key material is never exposed outside the physical secure boundary in a clear format.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.