Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST SP 800-131A Rev. 2 (Initial Public Draft)

Transitioning the Use of Cryptographic Algorithms and Key Lengths

Date Published: July 2018
Comments Due: September 7, 2018 (public comment period is CLOSED)
Email Questions to:


Elaine Barker (NIST), Allen Roginsky (NIST)


NIST is updating its guidance for transitioning to the use of stronger cryptographic keys and more robust algorithms by federal agencies to protect sensitive, but unclassified, information. These transitions are meant to address the challenges posed by new cryptanalysis, the increasing power of classical computing technology, and the potential emergence of quantum computers.

Draft Special Publication (SP) 800-131A Revision 2, Transitioning the Use of Cryptographic Algorithms and Key Lengths, is now available for public comment. This revision includes a strategy and schedule for retiring the use of the Triple Data Encryption Algorithm (TDEA). Other proposed changes are listed in Appendix B.



cryptographic algorithm; digital signatures; encryption; hash function; key agreement; key derivation functions; key management; key transport; key wrapping; message authentication codes; post-quantum algorithms; random number generation; security strength; transition
Control Families

System and Communications Protection; System and Information Integrity


Draft SP 800-131A Rev. 2 (pdf)

Supplemental Material:
Comments received (pdf)

Related NIST Publications:
SP 800-57 Part 1 Rev. 4

Document History:
07/19/18: SP 800-131A Rev. 2 (Draft)
03/21/19: SP 800-131A Rev. 2 (Final)


Security and Privacy