U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

SP 800-108 Rev. 1 (Draft)

Recommendation for Key Derivation Using Pseudorandom Functions

Date Published: October 18, 2021
Comments Due: January 18, 2022 (public comment period is CLOSED)
Email Questions to: sp800-108-comments@nist.gov


Lily Chen (NIST)


This document specifies families of key derivation functions for deriving additional keys from existing cryptographic keys.

This revision specifies key derivation functions using Keccak-based message authentication codes (KMAC) in addition to key derivation functions using keyed-hash message authentication codes (HMAC) and cipher-based message authentication codes (CMAC).

NOTE:  A call for patent claims is included on page iii of this draft.  For additional information, see the Information Technology Laboratory (ITL) Patent Policy--Inclusion of Patents in ITL Publications.



CMAC; HMAC; key derivation; KMAC; pseudorandom function
Control Families

None selected


SP 800-108 Rev. 1 (Draft) (DOI)
Local Download

Supplemental Material:
None available

Related NIST Publications:
SP 800-108

Document History:
10/18/21: SP 800-108 Rev. 1 (Draft)


Security and Privacy
key management; random number generation