Content deleted Content added
reflist |
note surprise and speculation about adding RSA |
||
Line 1:
The '''Commercial National Security Algorithm Suite''' (CNSA) is a set of cryptographic algorithms [[Promulgation|promulgated]] by the [[National Security Agency]] as a replacement for [[NSA Suite B Cryptography]] algorithms. It serves as the cryptographic base to protect US National Security Systems information up to the [[top secret]] level, while the NSA plans for a transition to [[quantum-resistant cryptography]].<ref>{{Cite web|url=https://www.johndcook.com/blog/2019/05/23/nsa-recommendations/|title=NSA recommendations {{!}} algorithms to use until PQC|last=Cook|first=John|date=2019-05-23|website=www.johndcook.com|url-status=live|archive-url=|archive-date=|access-date=2020-02-28}}</ref><ref name=":0">{{Cite web|url=https://apps.nsa.gov/iaarchive/library/ia-guidance/ia-solutions-for-classified/algorithm-guidance/commercial-national-security-algorithm-suite-factsheet.cfm|title=Commercial National Security Algorithm (CNSA) Suite Factsheet|last=|first=|date=2015-12-30|website=apps.nsa.gov|language=en|url-status=live|archive-url=|archive-date=|access-date=2020-02-28}}</ref><ref>{{Cite web|url=https://pomcor.com/2016/02/09/nsas-faqs-demystify-the-demise-of-suite-b-but-fail-to-explain-one-important-detail/|title=NSA’s FAQs Demystify the Demise of Suite B, but Fail to Explain One Important Detail – Pomcor|language=en-US|access-date=2020-02-28}}</ref><ref>https://cryptome.org/2016/01/CNSA-Suite-and-Quantum-Computing-FAQ.pdf</ref><ref>{{Cite web|url=https://www.cnss.gov/CNSS/issuances/Memoranda.cfm|title=Use of public standards for the secure sharing of information among national security systems, Advisory Memorandum 02-15 CNSS Advisory Memorandum Information Assurance 02-15|last=|first=|date=2015-07-31|website=Committee on National Security Systems|url-status=dead|archive-url=https://cryptome.org/2015/08/CNSS_Advisory_Memo_02-15.pdf|archive-date=2015-08-17|access-date=2020-02-28}}</ref><ref>{{Cite web|url=https://apps.nsa.gov/iaarchive/programs/iad-initiatives/cnsa-suite.cfm|title=Commercial National Security Algorithm Suite|last=|first=|date=19 August 2015|website=apps.nsa.gov|language=en|url-status=live|archive-url=|archive-date=|access-date=2020-02-28}}</ref><ref>{{Cite web|url=https://tools.ietf.org/html/rfc8423|title=RFC 8423 - Reclassification of Suite B Documents to Historic Status|last=|first=|date=July 2018|website=tools.ietf.org|language=en|url-status=live|archive-url=|archive-date=|access-date=2020-02-28}}</ref>
The suite includes
Line 7:
* [[SHA-2]] with 384 bits, [[Diffie–Hellman key exchange]] with a minimum 3072-bit modulus, and
* [[RSA (cryptosystem)|RSA]] with a minimum modulus size of 3072.<ref name=":0" />
{{Crypto-stub}}▼
The CNSA announcement is notable for adding [[RSA (cryptosystem)|RSA]], which was not included in Suite B, as an approved algorithm. This, and the overall delivery and timing of the announcement, in the absence of post-quantum standards, raised considerable speculation about whether NSA had found weaknesses e.g. in in elliptic-curve algorithms or others, or was trying to distance itself from an exclusive focus on ECC for non-technical reasons.<ref>{{Cite web|url=https://blog.cryptographyengineering.com/2015/10/22/a-riddle-wrapped-in-curve/|title=A riddle wrapped in a curve|date=2015-10-22|website=A Few Thoughts on Cryptographic Engineering|language=en|access-date=2020-02-28}}</ref><ref>{{Cite journal|last=Koblitz|first=Neal|last2=Menezes|first2=Alfred J.|date=2018-05-19|title=A Riddle Wrapped in an Enigma|url=https://eprint.iacr.org/2015/1018|journal=Cryptology ePrint Archive|volume=|pages=|via=}}</ref>
== References ==
Line 15 ⟶ 16:
[[Category:Standards of the United States]]
<references />{{Cryptography navbox|public-key
▲}}{{Crypto-stub}}
| |||