83 FR 22251 - Announcing Request for Comments on Lightweight Cryptography Requirements and Evaluation Criteria
DEPARTMENT OF COMMERCE
National Institute of Standards and Technology Federal Register Volume 83, Issue 93 (May 14, 2018)
National Institute of Standards and Technology
Federal Register Volume 83, Issue 93 (May 14, 2018)
| Page Range | 22251-22252 | |
| FR Document | 2018-10127 |
[Federal Register Volume 83, Number 93 (Monday, May 14, 2018)] [Notices] [Pages 22251-22252] From the Federal Register Online [www.thefederalregister.org] [FR Doc No: 2018-10127] ----------------------------------------------------------------------- DEPARTMENT OF COMMERCE National Institute of Standards and Technology Announcing Request for Comments on Lightweight Cryptography Requirements and Evaluation Criteria AGENCY: National Institute of Standards and Technology (NIST), Commerce. ACTION: Notice; request for comments. ----------------------------------------------------------------------- SUMMARY: The National Institute of Standards and Technology (NIST) is requesting comments on a proposed process to solicit, evaluate, and standardize one or more lightweight cryptographic algorithms. Current NIST cryptographic standards were designed to perform well on general- purpose computing platforms, and may not be suitable for some constrained computing environments. The draft requirements and evaluation criteria are available on the NIST Computer Security Resource Center website: https://csrc.nist.gov/Projects/Lightweight-Cryptography. DATES: Comments must be received on or before June 28, 2018. ADDRESSES: Comments may be sent electronically to [email protected] with ``Comment on Lightweight Cryptography Requirements and Evaluation Criteria'' in the subject line. Written comments may also be submitted by mail to Information Technology Laboratory, ATTN: Lightweight Cryptography Comments, National Institute of Standards and Technology, 100 Bureau Drive, Mail Stop 8930, Gaithersburg, MD 20899- 8930. Comments received in response to this notice will be published electronically at https://csrc.nist.gov/Projects/Lightweight-Cryptography, so commenters should not include information they do not wish to be posted (e.g., personal or confidential business information). FOR FURTHER INFORMATION CONTACT: Dr. Kerry McKay, National Institute of Standards and Technology, 100 Bureau Drive, Mail Stop 8930, Gaithersburg, MD 20899-8930, email: [email protected], by telephone (301) 975-4969. Technical inquiries regarding the proposed draft acceptability [[Page 22252]] requirements, submission requirements, or the evaluation criteria should be sent electronically to [email protected]. A public email list has been set up for announcements, as well as a forum to discuss the standardization effort being initiated by NIST. For directions on how to subscribe, please visit https://csrc.nist.gov/Projects/Lightweight-Cryptography. SUPPLEMENTARY INFORMATION: The deployment of small computing devices such as RFID tags, industrial controllers, sensor nodes and smart cards is becoming much more common. The shift from desktop computers to small devices brings a wide range of new security and privacy concerns. It is challenging to apply conventional cryptographic standards to small devices, because the tradeoff between security, performance and resource requirements was optimized for desktop and server environments, and this makes the standards difficult or impossible to implement in resource-constrained devices. Therefore, when current NIST-approved algorithms can be engineered to fit within the limited resources of constrained environments, their performance may not be acceptable. There are several emerging areas in which highly-constrained devices are interconnected, working in concert to accomplish some task. Examples of these areas include: Automotive systems, sensor networks, healthcare, distributed control systems, the Internet of Things (IoT), cyber-physical systems, and the smart grid. In recent years, there has been increased demand for cryptographic standards that are tailored for constrained devices. NIST has decided to create a portfolio of lightweight cryptographic algorithms, designed for limited use in applications and environments where cryptographic operations are performed by constrained devices that are unable to use existing NIST standards. Lightweight cryptography is a subfield of cryptography that aims to provide solutions tailored for resource-constrained devices. There has been a significant amount of work done by the academic community related to lightweight cryptography; this work includes efficient implementations of conventional cryptography standards, and the design and analysis of new lightweight primitives and protocols. The purpose of this notice is to solicit comments on the draft minimum acceptability requirements, submission requirements, evaluation criteria, and evaluation process of candidate algorithms from the public, the cryptographic community, academic and research communities, manufacturers, voluntary standards organizations, and federal, state, and local government organizations so that their needs can be considered in the process of developing new lightweight cryptography standards. The draft requirements and evaluation criteria are available on the NIST Computer Security Resource Center website: https://csrc.nist.gov/Projects/Lightweight-Cryptography. Authority: In accordance with the Information Technology Management Reform Act of 1996 (Pub. L. 104-106) and the Federal Information Security Management Act of 2002 (Pub. L. 107-347), the Secretary of Commerce is authorized to approve Federal Information Processing Standards. NIST activities to develop computer security standards to protect federal sensitive (unclassified) information systems are undertaken pursuant to specific responsibilities assigned to NIST by Section 20 of the National Institute of Standards and Technology Act (15 U.S.C. 278g-3), as amended. Kevin A. Kimball, Chief of Staff. [FR Doc. 2018-10127 Filed 5-11-18; 8:45 am] BILLING CODE 3510-13-P
![Federal Register / Vol. 83, No. 93 / Monday, May 14, 2018 / Notices 22251
of this meeting is to update the p.m. to 4:00 p.m. Eastern Time. The nist.gov; his phone number is (301) 975–
Committee on the progress of the NCST meeting will be open to the public. The 6071.
investigation of Hurricane Maria’s meeting will be held via webinar. The
Kevin A. Kimball,
effects on the U.S. territory of Puerto primary purpose of this meeting is to
Rico. The goals of the investigation will update the Committee on the progress of Chief of Staff.
be to characterize: (1) The wind the NCST investigation of Hurricane [FR Doc. 2018–10163 Filed 5–11–18; 8:45 am]
environment and technical conditions Maria’s effects on the U.S. territory of BILLING CODE 3510–13–P
associated with deaths and injuries; (2) Puerto Rico. The goals of the
the performance of representative investigation will be to characterize: (1)
critical buildings, and designated safe The wind environment and technical DEPARTMENT OF COMMERCE
areas in those buildings, including their conditions associated with deaths and
National Institute of Standards and
dependence on lifelines; and (3) the injuries; (2) the performance of
representative critical buildings, and Technology
performance of emergency
communications systems and the designated safe areas in those buildings, Announcing Request for Comments on
public’s response to such including their dependence on lifelines; Lightweight Cryptography
communications. The agenda may and (3) the performance of emergency Requirements and Evaluation Criteria
change to accommodate Committee communications systems and the
business. The final agenda will be public’s response to such AGENCY: National Institute of Standards
posted on the NIST website at https:// communications. The agenda may and Technology (NIST), Commerce.
www.nist.gov/topics/disaster-failure- change to accommodate Committee ACTION: Notice; request for comments.
studies/national-construction-safety- business. The final agenda will be
team-ncst/advisory-committee. posted on the NIST website at https:// SUMMARY: The National Institute of
DATES: The NCST Advisory Committee www.nist.gov/topics/disaster-failure- Standards and Technology (NIST) is
will meet on Wednesday, May 16, 2018 studies/national-construction-safety- requesting comments on a proposed
from 1:00 p.m. to 4:00 p.m. Eastern team-ncst/advisory-committee-meetings. process to solicit, evaluate, and
Time. Individuals and representatives of standardize one or more lightweight
organizations who would like to offer cryptographic algorithms. Current NIST
ADDRESSES: The meeting will be held
comments and suggestions related to cryptographic standards were designed
via webinar. For instructions on how to
items on the Committee’s agenda for to perform well on general-purpose
participate in the meeting, please see
this meeting are invited to request a computing platforms, and may not be
the SUPPLEMENTARY INFORMATION section
place on the agenda. Approximately 15 suitable for some constrained
of this notice.
minutes will be reserved near the computing environments. The draft
FOR FURTHER INFORMATION CONTACT: conclusion of the meeting for public requirements and evaluation criteria are
Benjamin Davis, Management and comments, and speaking times will be available on the NIST Computer
Program Analyst, Community Resilience assigned on a first-come, first-served Security Resource Center website:
Program, Engineering Laboratory, NIST, basis. The amount of time per speaker https://csrc.nist.gov/Projects/
100 Bureau Drive, Mail Stop 8615, will be determined by the number of Lightweight-Cryptography.
Gaithersburg, Maryland 20899–8604. requests received, but is likely to be
Mr. Davis’ email address is DATES: Comments must be received on
three minutes each. Questions from the or before June 28, 2018.
Benjamin.Davis@nist.gov; and his phone public will not be considered during
number is (301) 975–6071. ADDRESSES: Comments may be sent
this period. All those wishing to speak
SUPPLEMENTARY INFORMATION: The electronically to lightweight-crypto@
must submit their request by email to
Committee was established pursuant to nist.gov with ‘‘Comment on Lightweight
the attention of Mr. Benjamin Davis,
Section 11 of the NCST Act (Pub. L. Cryptography Requirements and
Benjamin.Davis@nist.gov, by 5:00 p.m.
107–231, codified at 15 U.S.C. 7301 et Eastern Time, Friday, May 11, 2018. Evaluation Criteria’’ in the subject line.
seq.). The Committee is currently Speakers who wish to expand upon Written comments may also be
composed of six members, appointed by their oral statements, those who had submitted by mail to Information
the Director of NIST, who were selected wished to speak but could not be Technology Laboratory, ATTN:
on the basis of established records of accommodated on the agenda, and those Lightweight Cryptography Comments,
distinguished service in their who were unable to attend are invited National Institute of Standards and
professional community and their to submit written statements to the Technology, 100 Bureau Drive, Mail
knowledge of issues affecting the NCST, National Institute of Standards Stop 8930, Gaithersburg, MD 20899–
National Construction Safety Teams. and Technology, 100 Bureau Drive, MS 8930.
The Committee advises the Director of 8604, Gaithersburg, Maryland 20899– Comments received in response to
NIST on carrying out the NCST Act; 8604, or electronically by email to this notice will be published
reviews the procedures developed for Benjamin.Davis@nist.gov. electronically at https://csrc.nist.gov/
conducting investigations; and reviews To participate in the meeting, please Projects/Lightweight-Cryptography, so
the reports issued documenting submit your first and last name, email commenters should not include
investigations. Background information address, and phone number to Benjamin information they do not wish to be
on the NCST Act and information on the Davis at Benjamin.Davis@nist.gov or posted (e.g., personal or confidential
NCST Advisory Committee is available (301) 975–6071. After pre-registering, business information).
at https://www.nist.gov/topics/disaster- participants will be provided with FOR FURTHER INFORMATION CONTACT: Dr.
amozie on DSK3GDR082PROD with NOTICES
failure-studies/national-construction- detailed instructions on how to join the Kerry McKay, National Institute of
safety-team-ncst/advisory-committee. meeting remotely. Anyone wishing to Standards and Technology, 100 Bureau
Pursuant to the Federal Advisory attend this meeting must register by 5:00 Drive, Mail Stop 8930, Gaithersburg,
Committee Act, as amended, 5 U.S.C. p.m. Eastern Time, Friday, May 11, MD 20899–8930, email: kerry.mckay@
App., notice is hereby given that the 2018, to attend. Please submit your full nist.gov, by telephone (301) 975–4969.
NCST Advisory Committee will meet on name, email address, and phone number Technical inquiries regarding the
Wednesday, May 16, 2018 from 1:00 to Benjamin Davis at Benjamin.Davis@ proposed draft acceptability
VerDate Sep<11>2014 18:02 May 11, 2018 Jkt 244001 PO 00000 Frm 00013 Fmt 4703 Sfmt 4703 E:\FR\FM\14MYN1.SGM 14MYN1](https://thefederalregister.org/doc/83_FR_22344/page/1.svg)
![22252 Federal Register / Vol. 83, No. 93 / Monday, May 14, 2018 / Notices
requirements, submission requirements, algorithms from the public, the Council; steven.atran@gulfcouncil.org,
or the evaluation criteria should be sent cryptographic community, academic telephone: (813) 348–1630.
electronically to lightweight-crypto@ and research communities, SUPPLEMENTARY INFORMATION:
nist.gov. manufacturers, voluntary standards
A public email list has been set up for organizations, and federal, state, and Day 1—Thursday, May 31, 2018; 8:30
announcements, as well as a forum to local government organizations so that a.m.–5:30 p.m.
discuss the standardization effort being their needs can be considered in the I. Introductions and Adoption of
initiated by NIST. For directions on how process of developing new lightweight Agenda
to subscribe, please visit https:// cryptography standards. The draft II. Approval of March 26–27, 2018 SSC
csrc.nist.gov/Projects/Lightweight- requirements and evaluation criteria are Minutes
Cryptography. available on the NIST Computer III. Selection of SSC representative at
SUPPLEMENTARY INFORMATION: The Security Resource Center website: June 18–22, 2018 Council meeting
deployment of small computing devices https://csrc.nist.gov/Projects/ in Key West, FL
such as RFID tags, industrial controllers, Lightweight-Cryptography.
Standing and Reef Fish SSC Session
sensor nodes and smart cards is Authority: In accordance with the
becoming much more common. The Information Technology Management Reform IV. SEDAR 37 Update (FWC hogfish
shift from desktop computers to small Act of 1996 (Pub. L. 104–106) and the assessment)
Federal Information Security Management a. Review of assessment
devices brings a wide range of new
Act of 2002 (Pub. L. 107–347), the Secretary b. OFL and ABC recommendations
security and privacy concerns. It is
of Commerce is authorized to approve V. SEDAR 51 (gray snapper benchmark
challenging to apply conventional Federal Information Processing Standards. assessment)
cryptographic standards to small NIST activities to develop computer security a. Review of assessment
devices, because the tradeoff between standards to protect federal sensitive b. OFL and ABC recommendations
security, performance and resource (unclassified) information systems are VI. SEDAR 52 (red snapper standard
requirements was optimized for desktop undertaken pursuant to specific assessment)
and server environments, and this responsibilities assigned to NIST by Section
a. Review of assessment
makes the standards difficult or 20 of the National Institute of Standards and
Technology Act (15 U.S.C. 278g–3), as b. Discard mortality estimates of red
impossible to implement in resource- snapper by sector
constrained devices. Therefore, when amended.
c. Estimate of the reduction in
current NIST-approved algorithms can Kevin A. Kimball, mortality (numbers of fish) for red
be engineered to fit within the limited Chief of Staff. snapper from use of venting and
resources of constrained environments, [FR Doc. 2018–10127 Filed 5–11–18; 8:45 am] descending devices
their performance may not be BILLING CODE 3510–13–P d. OFL and ABC recommendations
acceptable.
There are several emerging areas in Day 2—Friday, June 1, 2018; 8:30 a.m.–
which highly-constrained devices are DEPARTMENT OF COMMERCE 2:30 p.m.
interconnected, working in concert to VI. Continuation of SEDAR 52 (red
accomplish some task. Examples of National Oceanic and Atmospheric snapper standard assessment)
these areas include: Automotive Administration VII. SEDAR 64 (yellowtail snapper
systems, sensor networks, healthcare, benchmark assessment)
distributed control systems, the Internet RIN 0648–XG238 a. Review and approval of terms of
of Things (IoT), cyber-physical systems, reference
and the smart grid. In recent years, there Gulf of Mexico Fishery Management b. Review and approval of schedule
has been increased demand for Council; Public Meeting c. Data, assessment, and review
cryptographic standards that are tailored AGENCY: National Marine Fisheries workshop appointments
for constrained devices. NIST has Service (NMFS), National Oceanic and VIII. Discussion on Best Scientific
decided to create a portfolio of Atmospheric Administration (NOAA), Information Available
lightweight cryptographic algorithms, Commerce. a. Review of National Standard 2
designed for limited use in applications b. Council Coordinating Committee
ACTION: Notice of a public meeting.
and environments where cryptographic comments
operations are performed by constrained SUMMARY: The Gulf of Mexico Fishery IX. Draft Reef Fish Amendment 48/Red
devices that are unable to use existing Management Council will hold a two Drum Amendment 5
NIST standards. day meeting of its Standing and Reef a. Review of MSY Proxy Paper,
Lightweight cryptography is a Fish Scientific and Statistical ‘‘Establishing Stock Status
subfield of cryptography that aims to Committees (SSC). Determination Criteria for Fisheries
provide solutions tailored for resource- with High Discards and Uncertain
DATES: The meeting will convene on
constrained devices. There has been a Recruitment’’ by Goethel et al.
significant amount of work done by the Thursday, May 31, 2018, 8:30 a.m. to
b. Review of draft amendment
academic community related to 5:30 p.m., and Friday, June 1, 2018, 8:30 X. Tentative 2018 SSC Meeting Dates
lightweight cryptography; this work a.m. to 2:30 p.m. EDT. XI. Other Business—Adjourn
includes efficient implementations of ADDRESSES: The meeting will be held in The meeting will be broadcast via
conventional cryptography standards, the Gulf Council’s Conference Room. webinar. You may register for the
amozie on DSK3GDR082PROD with NOTICES
and the design and analysis of new Council address: Gulf of Mexico webinar by visiting www.gulfcouncil.org
lightweight primitives and protocols. Fishery Management Council, 2203 N and clicking on the SSC meeting on the
The purpose of this notice is to solicit Lois Avenue, Suite 1100, Tampa, FL calendar. https://
comments on the draft minimum 33607; telephone: (813) 348–1630. attendee.gotowebinar.com/register/
acceptability requirements, submission FOR FURTHER INFORMATION CONTACT: 3383291116212545537-. The Agenda is
requirements, evaluation criteria, and Steven Atran, Senior Fishery Biologist, subject to change, and the latest version
evaluation process of candidate Gulf of Mexico Fishery Management along with other meeting materials will
VerDate Sep<11>2014 18:02 May 11, 2018 Jkt 244001 PO 00000 Frm 00014 Fmt 4703 Sfmt 4703 E:\FR\FM\14MYN1.SGM 14MYN1](https://thefederalregister.org/doc/83_FR_22344/page/2.svg)
Document Created: 2018-05-12 01:11:01
Document Modified: 2018-05-12 01:11:01
| Category | Regulatory Information | |
| Collection | Federal Register | |
| sudoc Class | AE 2.7: GS 4.107: AE 2.106: | |
| Publisher | Office of the Federal Register, National Archives and Records Administration | |
| Section | Notices | |
| Action | Notice; request for comments. | |
| Dates | Comments must be received on or before June 28, 2018. | |
| Contact | Dr. Kerry McKay, National Institute of Standards and Technology, 100 Bureau Drive, Mail Stop 8930, Gaithersburg, MD 20899-8930, email: [email protected], by telephone (301) 975-4969. Technical inquiries regarding the proposed draft acceptability requirements, submission requirements, or the evaluation criteria should be sent electronically to [email protected] | |
| FR Citation | 83 FR 22251 |
2025 Federal Register | Disclaimer | Privacy Policy
USC | CFR | eCFR