[Cryptography] VCAT report on NIST's process review
Ben Laurie
ben at links.org
Tue Jul 15 05:08:23 EDT 2014
On 14 July 2014 21:51, John Kelsey <crypto.jmk at gmail.com> wrote:
> Everyone,
>
> The VCAT (one of our oversight committees) convened a panel of experts to
> look over our interactions with NSA in our past cryptographic standards,
> including Dual EC. For those interested in the results and the materials
> posted, they can be found at
>
> http://www.nist.gov/director/vcat/cryptographic-standards-guidelines-process.cfm
And this is how the NSA will be dealt with:
"NIST may seek the advice of the NSA on cryptographic matters but it
must be in a position to
assess it and reject it when warranted. This may be accomplished by
NIST itself or by engaging
the cryptographic community during the development and review of any
particular standard.
The VCAT recommends that NIST senior management reviews the current
requirement for
interaction with the NSA and requests changes where it hinders its
ability to independently
develop the best cryptographic standards to serve not only the United
States Government but
the broader community"
I feel so reassured.
More information about the cryptography
mailing list