[3873] in cryptography@c2.net mail archive

home help back first fref pref prev next nref lref last post

Re: Triple DES Standard?

daemon@ATHENA.MIT.EDU (M Taylor)
Tue Dec 29 17:28:54 1998

Date: Tue, 29 Dec 1998 16:31:30 -0400 (AST)
From: M Taylor <mctaylor@privacy.nb.ca>
To: Rodney Thayer <rodney@tillerman.nu>
Cc: cryptography@c2.net
In-Reply-To: <4.1.19981228151828.03c3a080@idi-fk-gw.abhiweb.com>

On Mon, 28 Dec 1998, Rodney Thayer wrote:

> Is there a "standard" for Triple DES, in 2-key or 3-key mode?
...
> Is there an official (in any sense) "standard" for it? 

There are draft American National Standard (ANSI) X9.52 and X9.62 by the 
Accredited Standards Committee X9 for Financial Services. I'm not sure if
ANSI makes these widely available.

"Note: Triple DES is not yet technically a FIPS-approved algorithm, since
it is not specified in or referenced by a FIPS. However, it is allowed for
U.S. Government use (mentioned in NIST' September 1998 ITL Bulletin), and
requirements for its use within a FIPS 140-1 module are specifie under
Implementation Guidance 9.4. (12/22/98)"
<http://csrc.nist.gov/cryptval/140-1/1401ig-4.htm>

The Sept 1998 ITL Bulletin: http://csrc.nist.gov/nistbul/itl98-09.txt


>From <http://csrc.nist.gov/cryptval/140-1/1401ig-4.htm#9tripleDES>

If Triple DES is being implemented in a 140-1 module, then - until NIST
has specific Triple DES conformance tests - in order for NIST to recognize
that implementation, it must meet several critieria:

   a.the DES engine(s) used within the Triple DES implementation must be
     validated as conforming to FIPS 46-2/81 as appropriate; and

   b.it must implement one or more of the following modes of Triple DES
     (a.k.a. TDEA) listed in draft American
     National Standard X9.52, "Triple Data Encryption Algorithm" in
     section 3.3:

        1.TDEA Electronic Codebook Mode (TECB);

        2.TDEA Cipher Block Chaining Mode (TCBC);

        3.TDEA Cipher Block Chaining Mode - Interleaved (TCBC-I);

        4.TDEA Cipher Feedback Mode (TCFB);

        5.TDEA Cipher Feedback Mode - Pipelined (TCFB-P);

        6.TDEA Output Feedback Mode (TOFB);

        7.TDEA Output Feedback Mode - Pipelined (TOFB-P);

     * Note that modes 8) TDEA Cipher Block Chaining with Output Feedback
     Masking (TCBCM) and 9) TDEA Cipher Block Chaining with Output
     Feedback Masking - Interleaved (TCBCM-I) will NOT be
     recognized as being FIPS 140-1 compliant.

--
M Taylor   mctaylor@  /  glyphmetrics.ca | privacy.nb.ca
home help back first fref pref prev next nref lref last post