"The National Institute of Standards and Technology (NIST) proposes to withdraw seventeen (17) Federal Information Processing Standards (FIPS) from the FIPS series. Some of these FIPS adopt voluntary industry standards for Federal government use, but the FIPS documents have not been updated to reference current or revised voluntary industry standards. Other FIPS adopt data standards that are developed and used by other Federal government agencies. These FIPS have not been updated to reflect changes and modifications in the data representations. The remaining FIPS provide advisory guidance to Federal agencies on computer security issues. This advisory guidance, which has no requirements for compulsory and binding use, has been updated by NIST and issued in more recent recommendations and publications.
Prior to the submission of this proposed withdrawal to the Secretary of Commerce for review and approval, it is essential to assure that consideration is given to the needs and views of manufacturers, the public, and State and local governments. The purpose of this notice is to solicit such views."
Among the seventeen FIPS proposed for withdrawal, eight are related to computer security:
- FIPS 31, Guidelines for Automatic Data Processing Physical Security and Risk Management
- FIPS 48, Guidelines on Evaluation of Techniques for Automated Personal Identification
- FIPS 73, Guidelines for Security of Computer Applications
- FIPS 83, Guideline on User Authentication Techniques for Computer Network Access Control
- FIPS 87, Guidelines for ADP Contingency Planning
- FIPS 102, Guideline for Computer Security Certification and Accreditation
- FIPS 112, Password Usage
- FIPS 171, Key Management Using ANSI X9.17