CMVP Approved Non-Invasive Attack Mitigation Test Metrics: CMVP Validation Authority Updates to ISO/IEC 24759

Schaffer, Kim

doi:https://doi.org/10.6028/NIST.SP.800-140F

SP 800-140F

CMVP Approved Non-Invasive Attack Mitigation Test Metrics: CMVP Validation Authority Updates to ISO/IEC 24759

Documentation Topics

Date Published: March 2020

Author(s)

Kim Schaffer (NIST)

Abstract

NIST Special Publication (SP) 800-140F replaces the approved non-invasive attack mitigation test metric requirements of ISO/IEC 19790 Annex F. As a validation authority, the Cryptographic Module Validation Program (CMVP) may supersede this Annex in its entirety. This document supersedes ISO/IEC 19790 Annex F and ISO/IEC 24759 paragraph 6.18.

Keywords

attack mitigation; Cryptographic Module Validation Program; CMVP; FIPS 140 testing; FIPS 140; ISO/IEC 19790; ISO/IEC 24759; non-invasive; testing requirement; vendor evidence; vendor documentation

Control Families

None selected

Documentation

Publication:
SP 800-140F (DOI)
Local Download

Supplemental Material:
None available

Other Parts of this Publication:
SP 800-140
SP 800-140A
SP 800-140B
SP 800-140C Rev. 1
SP 800-140D Rev. 1
SP 800-140E

Document History:
10/09/19: SP 800-140F (Draft)
03/20/20: SP 800-140F (Final)

Topics

Security and Privacy
cryptography; testing & validation