A security function (e.g., cryptographic algorithm, cryptographic key management technique, or authentication technique) that is either
a) Specified in an Approved standard,
b) Adopted in an Approved standard and specified either in an appendix of the Approved standard or in a document referenced by the Approved standard, or
c) Specified in the list of Approved security functions.
NIST SP 800-152