NIST CONTRIBUTES TO NEW ANSI STANDARD FOR FINANCIAL SERVICES INDUSTRY.The American National Standards Institute See ANSI. (body, standard) American National Standards Institute - (ANSI) The private, non-profit organisation (501(c)3) responsible for approving US standards in many areas, including computers and communications. ANSI is a member of ISO. (ANSI (American National Standards Institute, New York, www.ansi.org) A membership organization founded in 1918 that coordinates the development of U.S. voluntary national standards in both the private and public sectors. It is the U.S. member body to ISO and IEC. ) recently approved ANSI X9.42-2001, Public Key Cryptography An encryption method that uses a two-part key: a public key and a private key. To send an encrypted message to someone, you use the recipient's public key, which can be sent to you via regular e-mail or made available on any public Web site or venue. For the Financial Services Industry: Agreement of Symmetric Keys Using Discrete Logarithm Cryptography, as an ANSI standard. MST's role in producing the standard involved coordinating the development of the standard and serving as primary editor. The X9.42-2001 standard defines the secure establishment of cryptographic data for the keying of symmetrically keyed algorithms (e.g., Triple Data Encryption Algorithm Data Encryption Algorithm - (DEA) An ANSI standard defined in ANSI X3.92-1981. It is identical to the Data Encryption Standard (DES). [TDEA]). Schemes are provided for the agreement of symmetric keys using DiffieHeliman and MQV algorithms. The Diffie-Hellman key agreement mechanism is a well-understood and widely implemented public key technique that facilitates cost-effective cryptographic key agreement across modern distributed electronic networks such as the Internet. The MQV algorithm is a variation of the Diffie-Heilman algorithm that has more security attributes and may provide better performance over analogous Diffie-Heilman methods. Because the Diffie-Hellman and the MQV techniques are based on the same fundamental mathematics as the Digital Signature Algorithm The Digital Signature Algorithm (DSA) is a United States Federal Government standard or FIPS for digital signatures. It was proposed by the National Institute of Standards and Technology (NIST) in August 1991 for use in their Digital Signature Standard (DSS) (DSA), additional efficiencies and functionality may be obtained by combining these and other cryptographic techniques. The standard divides the key agreement process into the following major components: domain parameter generation, domain parameter validation, key pair generation, public key validation, shared secret value calculation, key derivation, and test message authentication code A cryptographic message authentication code (MAC) is a short piece of information used to authenticate a message. A MAC algorithm accepts as input a secret key and an arbitrary-length message to be authenticated, and outputs a MAC (sometimes known as a tag). computation for discrete logarithm problem based key agreement schemes. Using these components, different parties may establish a piece of common shared secret information such as cryptographic keys. The shared secret information may be used with symmetrically keyed algorithms to provide confidentiality, authentication, and data integrity services for financial information or used as a key-encrypting key with other ANSI X9 key management protocols. Currently, NIST is developing guidelines for validating implementations of ANSI X9.42. These validation tests are designed to address the individual components of ANSI X9.42. ITL ITL The ISO 4217 currency code for the Italian Lira. will write both a document and the software to perform these validation tests for the different components of ANSI X9.42. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion