Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program

CAVP Testing: Digital Signatures

Algorithm Specifications

Algorithm specifications for current FIPS-approved and NIST-recommended digital signature algorithms are available from the Cryptographic Toolkit.

Current testing includes the following algorithms:

DSA | ECDSA | RSA (in FIPS 186-4)

DSA | ECDSA | RSA (in FIPS 186-2)


Algorithm Validation Testing Requirements

FIPS 186-4

Digital Signature Algorithm (DSA)

Digital Signature Algorithm Validation System (DSA2VS) specifies validation testing requirements for the DSA algorithm in FIPS 186-4.

Testing Notes

Elliptic Curve Digital Signature Algorithm (ECDSA)

Elliptic Curve Digital Signature Algorithm (ECDSA) Validation System (ECDSA2VS) specifies validation testing requirements for the ECDSA algorithm in FIPS 186-4.

Testing Notes

RSA Algorithm

RSA Validation System (RSA2VS) specifies validation testing requirements for the RSA algorithm in FIPS 186-4.

Testing Notes


FIPS 186-2

The following documents specify the algorithm validation testing requirements for FIPS 186-2 (with Change Notice 1, October 5, 2001) and two other versions of the RSA algorithm specified in PKCS#1 v2.1: RSA Cryptography Standard, RSA Laboratories, June 2002:

Digital Signature Algorithm (DSA)

Digital Signature Algorithm Validation System (DSAVS) specifies validation testing requirements for the DSA algorithm in FIPS 186-2.

Testing Notes

Elliptic Curve Digital Signature Algorithm (ECDSA)

Elliptic Curve Digital Signature Algorithm Validation System (ECDSAVS) specifies validation testing requirements for the ECDSA algorithm in FIPS 186-2.

Testing Notes

RSA Algorithm

RSA Validation System (RSAVS) specifies validation testing requirements for the RSA algorithm in FIPS 186-2 and PKCS 1.5 and PKCS PSS, two other versions of the RSA algorithm specified in PKCS#1 v2.1: RSA Cryptography Standard, RSA Laboratories, June 2002.

Testing Notes

Back to Top

Validation Lists

Digital signature implementations validated by NIST are found on the DSA, ECDSA, and RSA Validation Lists:

Back to Top

Test Vectors

Use of these test vectors does not replace validation obtained through the CAVP.

The test vectors linked below can be used to informally verify the correctness of digital signature algorithm implementations (in FIPS 186-2 and FIPS 186-4) using the validation systems listed above.

Response files (.rsp): the test vectors are properly formatted in response (.rsp) files. Vendor response files must match this format exactly.

Intermediate results files (.txt): files with intermediate results (.txt) are supplied to help with debugging.

See the README file in each zip file for details.
 

Publication Algorithm Test Vectors

FIPS 186-4

DSA | ECDSA | RSA

FIPS 186-2

DSA | ECDSA | RSA

Back to Top

Created October 05, 2016, Updated April 11, 2018