Comments open for NIST-proposed updates to Digital Signature Standard

Published: 2012-04-23
Last Updated: 2012-04-23 17:11:36 UTC
by Russ McRee (Version: 1)
1 comment(s)

The comment period for National Institute of Standards and Technology (NIST) proposed changes to the Digital Signature Standard (FIPS 186-3) is open until May 25, 2012. Submit comments via  fips_186-3_change_notice at nist dot gov, with ''186-3 Change Notice'' in the subject line.

The proposed changes include:

  • "clarification on how to implement the digital signature algorithms approved in the standard: the Digital Signature Algorithm (DSA), the Elliptic Curve Digital Signature Algorithm (ECDSA) and the Rivest-Shamir-Adelman algorithm (RSA)"
  • "allowing the use of additional, approved random number generators, which are used to generate the cryptographic keys used for the generation and verification of digital signatures"

NIST indicates that "the standard provides a means of guaranteeing authenticity in the digital world by means of operations based on complex math that are all but impossible to forge" but that "updates to the standard are still necessary as technology changes."

Comment and feedback on your digital signature implementations are welcome via our comments form.


Russ McRee@holisticinfosec


1 comment(s)


I wonder if NIST has really thought about its statement. I occured to me that a botnet with millions of processors might make quick work of the job of cracking most common encyrption schemes. Botnets with millions of processors could well exceed the processing power of a supercomputer with its few hundred thousand processors.

Diary Archives