NIST Logo and ITL Banner Link to the NIST Homepage Link to the ITL Homepage Link to the NIST Homepage
Search CSRC:

FIPS 140-3 PUB Development

Security Requirements for Cryptographic Modules

 

FIPS 140-3 Development Status

TBD

FIPS 140-3 presented to the Commerce Department for signature by the Secretary of Commerce
TBD
Document ready for publication
TBD
Prepare document for publication.
1 Oct 2012
Public comment period closes.
30 Aug 2012
Additional public comments requested on the FIPS 140-3 (Second Draft) – 30 day comment period. Federal Register Notice [Docket No.: 070321067-2100-03]
Dec 2010

Third draft of the standard prepared for internal review.

Oct 2010

All public comments received for the revised (second) draft of FIPS 140-3 are processed and have been resolved.

11 Mar 2010
Public comment period for second draft of FIPS 140-3 closed. A complete set of all comments received in response to the July 2007 FIPS 140-3 draft and NIST's responses to these comments may be accessed here.
11 Dec 2009
The Revised Draft of FIPS 140-3 published for public comments. This draft addressed the comments received on the first public draft posted in July 2007 and from the FIPS 140-3 Software Security Workshop held by NIST on March 18, 2008. [Docket No. 070321067-91333-02]
18 Mar 2008

FIPS 140-3 Software Security Workshop

12 Oct 2007
The public comment period for the first draft of FIPS 140-3 has closed.
11 Oct 2007
Public comment period for first draft of FIPS 140-3 will end.
13 Jul 2007

Announcing Public Draft of Federal Information Processing Standard (FIPS) 140-3 [PDF Draft: 07-13-2007], a revision of FIPS 140-2, Security Requirements for Cryptographic Modules. [Docket No. 070321067–7068–01]

31 Mar 2007
First public draft of FIPS 140-3 has been completed. This draft is undergoing the standard NIST and DoC administrative review and release process. Once this process is complete, a Federal Register Notice will be published and the draft will be made available for a public review and comment. This page will be updated as soon as a date is known when this process is completed and it will be available.
26 Sep 2005
Physical Security Testing Workshop held September 26-29, 2005.
28 Feb 2005

Comments on new and revised requirements for FIPS 140-3 ended.

12 Jan 2005
Announcing Development of Federal Information Processing Standard (FIPS) 140-3, a revision of FIPS 140-2, Security Requirements for Cryptographic Modules - [Docket No. 041217352-4352-01]

NOTE: Please continue to direct all your questions regarding the FIPS 140-2 standard and the cryptographic modules testing and validation to the CMVP, contacts listed here.

Back to Top

 

Announcements

  • A Federal Register Notice [Docket No.: 070321067-2100-03] was published on 8.30.2012 announcing NIST’s request for additional comments on specific sections of Federal Information Processing Standard 140-3 (Second Draft), Security Requirements for Cryptographic Modules, to clarify and resolve inconsistencies in the public comments received in response to the Federal Register (74 FR 91333) notice of December 11, 2009. The Second Draft can be downloaded from http://csrc.nist.gov/news_events/. The list of these specific sections can be found here. Comments on sections not specifically listed will not be considered.

Back to Top