This document has been developed by the National Institute of Standards and Technology (NIST) to further its statutory responsibilities under the Federal Information Security Management Act (FISMA) of 2002, P.L. 107-347. NIST is responsible for developing standards and guidelines, including minimum requirements, for providing adequate information security for all agency operations and assets, but such standards and guidelines shall not apply to national security systems. This guideline is consistent with the requirements of the Office of Management and Budget (OMB) Circular A-130, Section 8b(3), Securing Agency Information Systems, as analyzed in A-130, Appendix IV: Analysis of Key Sections. Supplemental information is provided in A-130, Appendix III. This guideline has been prepared for use by federal agencies. It may also be used by nongovernmental organizations on a voluntary basis and is not subject to copyright. (Attribution would be appreciated by NIST.) Nothing in this document should be taken to contradict standards and guidelines made mandatory and binding on federal agencies by the Secretary of Commerce under statutory authority. Nor should these guidelines be interpreted as altering or superseding the existing authorities of the Secretary of Commerce, Director of the OMB, or any other federal official.
The workshop was organized to obtain expert opinions on the mathematical and statistical characteristics of the proposed Data Encryption Standard (DES) as it relates to computer security.This report summarizes formal presentations that were made, outlines major issues that were raised, quotes statements that were made for the record and answers several of the major questions that were asked. Non-random entries were necessary to provide security.b.The design criteria, independently derived, coincided with some that were classified and the designers agreed not to make them public.c.Of the possible good S-boxes, these were chosen to minimize combinatorial logic. The draft DES, published by NBS, was exactly as designed and submitted. 4.The acceptability of having a standard based on classified criteria was questioned.Instances were given of some standards based on such criteria (DOD, AEC). Theconsensus of group was that the DES was completely and uniquely specified for implementation. Some participants felt that since the design principles of the S-boxes were independently discovered, they should be publishable even though they are considered classified . 7.Assertions were made that S-boxes should contain the exclusive-or combination of S-boxes chosen by NBS, the designer of the algorithm and IEEE. 8.It was agreed that the S-box entries were not selected at random but were chosen according to some unspecified criteria.Most of the participants accepted the designers explanation that this was done to strengthen rather than weaken the algorithm.
The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) promotes the U.S. economy and public welfare by providing technical leadership for the nation's measurement and standards infrastructure. ITL develops tests, test methods, reference data, proof of concept implementations, and technical analyses to advance the development and productive use of information technology. ITL's responsibilities include the development of management, administrative, technical, and physical standards and guidelines for the cost-effective security and privacy of other than national security-related information in federal information systems. The Special Publication 800-series reports on ITL's research, guidelines, and outreach efforts in information system security, and its collaborative activities with industry, government, and academic organizations.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
hi@scite.ai
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.