NIST Logo and ITL Banner Link to the NIST Homepage Link to the ITL Homepage Link to the NIST Homepage
Search CSRC:

CMVP Management Manual and
Frequently Asked Questions (FAQs)

CMVP Management Manual

CMVP Management Manual: PDF (04-15-2009)

The purpose of the CMVP Management Manual is to provide effective guidance for the management of the CMVP, and the conduct of activities necessary to ensure that the standards are fully met.The CMVP Management Manual is applicable to the CMVP Validation Authorities, the CST Laboratories, and the vendors who participate in the program. Consumers who procure validated cryptographic modules may also be interested in the contents of this manual. This manual outlines the management activities and specific responsibilities which have been assigned to the various participating groups. This manual does not deal with the actual standards and technical aspects of the standards.

CMVP FAQ

CMVP FAQ Document: PDF (12-04-2007)

The CMVP FAQ includes items of interest, programmatic issues and other topics related to the Cryptographic Module Validation Program. The CMVP FAQ is organized to address questions that are of interest to Federal users or procurers of cryptographic modules and to vendors developing cryptographic modules or solutions utilizing embedded cryptographic modules. Following are the eight sections of the FAQ:

    • Section 1: Overview
    • Section 2: Introduction to the Cryptographic Module Validation Program
    • Section 3: General CMVP Information
    • Section 4: Standards
    • Section 5: Cryptographic Module Validation
    • Section 6: Cryptographic Algorithm Testing
    • Section 7: Revalidation
    • Section 8: References