Is there any reference to check the list of encryption & signing algorithms which are compliant to FIPS 140-2. After an exhaustive search I could find only "AES".
Any suggestions would be much appreciated.
Asked
Active
Viewed 1e+01k times
3 Answers
25
Take a look at FIPS 140-2 Annex A. It lists the following:
- Symmetric Key
- AES, Triple-DES, Escrowed Encryption Standard
- Asymmetric Key
- DSA, RSA, ECDSA
- Hash Standards
- SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224, SHA-512/256
- Random number generators
- See annex c
- Message authentication
- CCM, GCM, GMAC, CMAC, HMAC
mikeazo
- 39,117
- 9
- 118
- 183
2
The current list of FIPS-approved cryptographical methods is here.
For encryption, we're limited to AES, 3DES (known as TDEA in FIPS-speak), and EES (Skipjack).
As for signing algorithms, we have RSA, DSA and ECDSA.
Note that the list of FIPS-approved algorithms does change at times; not extremely frequently, but more often than they come out with a new version of FIPS 140.
poncho
- 154,064
- 12
- 239
- 382
1
Looks like there is no FIPS 140-2 approved asymmetric encryption algorithm, as DSA/RSA/ECDSA are only approved for key generation/signature.
wye
- 11
- 1