Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Government Use of Standards for Security and Conformance Requirements for Cryptographic Algorithm and Cryptographic Module Testing and Validation Programs
August 12, 2015

NIST is seeking public comment on the potential use of certain International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) standards for cryptographic algorithm and cryptographic module testing, conformance, and validation activities, currently specified by Federal Information Processing Standard (FIPS) 140-2. The National Technology Transfer and Advancement Act (NTTAA) directs federal agencies to adopt voluntary consensus standards wherever possible. The responses to this request for information will be used to plan possible changes to the FIPS or in a decision to use all or part of the ISO/IEC standards for testing, conformance and validation of cryptographic algorithms and modules.

See the Supplementary Information section of the Federal Register Notice, as well as the FIPS 140-3 Development project pages, for questions of particular interest to NIST, regarding FIPS 140-2 and ISO/IEC standards.

Comments received in response to the RFI

Federal Register Notice

Document Number: 2015-19743

Parent Project

See: FIPS 140-3 Development
Created December 12, 2016, Updated June 22, 2020