Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Comments open for NIST-proposed updates to Digital Signature Standard - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Comments open for NIST-proposed updates to Digital Signature Standard

The comment period for National Institute of Standards and Technology (NIST) proposed changes to the Digital Signature Standard (FIPS 186-3) is open until May 25, 2012. Submit comments via  fips_186-3_change_notice at nist dot gov, with ''186-3 Change Notice'' in the subject line.

The proposed changes include:

  • "clarification on how to implement the digital signature algorithms approved in the standard: the Digital Signature Algorithm (DSA), the Elliptic Curve Digital Signature Algorithm (ECDSA) and the Rivest-Shamir-Adelman algorithm (RSA)"
  • "allowing the use of additional, approved random number generators, which are used to generate the cryptographic keys used for the generation and verification of digital signatures"

NIST indicates that "the standard provides a means of guaranteeing authenticity in the digital world by means of operations based on complex math that are all but impossible to forge" but that "updates to the standard are still necessary as technology changes."

Comment and feedback on your digital signature implementations are welcome via our comments form.


Russ McRee@holisticinfosec


Russ McRee

204 Posts
ISC Handler
Apr 23rd 2012
I wonder if NIST has really thought about its statement. I occured to me that a botnet with millions of processors might make quick work of the job of cracking most common encyrption schemes. Botnets with millions of processors could well exceed the processing power of a supercomputer with its few hundred thousand processors.

Sign Up for Free or Log In to start participating in the conversation!