From: Don Wright <don@xxxxxxxxxxx>
Date: Fri, Jun 27, 2008 at 4:06 PM
Subject: [2600] NIST mulls algorithm for disk encryption
To: STDS-2600@xxxxxxxxxxxxxxxxx
From Government Computer News
http://www.gcn.com/online/vol1_no1/46503-1.html?topic=security#
NIST mulls algorithm for disk encryption
By William
Jackson
A new algorithm has been submitted to the National Institute
of Standards and Technology as a new mode of operation for the Advanced
Encryption Standard.
The XTS-AES already has been approved by the Institute of Electrical and
Electronics Engineers as a standard for encrypting block-oriented storage
devices, and IEEE has submitted it to NIST to get required approval for
use by agencies.
"Subject to the 90-day period of public comment, NIST proposes to approve
XTS for government use under auspices of FIPS Pub. 140-2," the Federal
Information Processing Standard for encryption modules, the agency announced
earlier this month.
AES is the current federal standard encryption algorithm. The IEEE Security
in Storage Working Group developed a standard architecture for encrypted
shared-storage media based on a specific mode of operation for AES. The
working group originally focused on using AES in an alternative mode called
LRW, but this was replaced with the XTS mode in 2006 because of weaknesses
in the LRW mode. IEEE 1619, "Standard for Cryptographic Protection of
Data on Block-Oriented Storage Devices," which addresses data storage
on disk drives, was approved in December 2007.
"Security in storage impacts all kinds of financial transactions, third-party
storage of corporate data, military operations, health care information
and all other segments of the critical infrastructure of society," said
Jack Cole, chairman of the IEEE Information Assurance Standards Committee.
But the standard's use in government applications requires NIST approval
as an approved mode of operation under FIPS 140-2. Although the agency
proposes to approve the standard, it may specify additional requirements
or restrictions for government use.
IEEE has agreed to make a relevant extract from the standard available
free of charge during the public-comment period.
After the comment period, the standard would be available for purchase
from IEEE at $85 for members and affiliates and $105 for nonmembers.
Comments should be e-mailed to EncryptionModes@xxxxxxxx
by Sept. 3. NIST particularly seeks comments on:
- The XTS-AES algorithm itself.
- Depth of industry support.
- Appeal of the algorithm for wider applications.
- Proposal to make the specification available only by purchase from IEEE.
- Concerns about intellectual-property rights.
***************************************************************************
Don Wright
don@xxxxxxxxxxx
f.wright@xxxxxxxx / f.wright@xxxxxxxxxxxx
Director of Standards
Lexmark International Director, ANSI &
IEEE-ISTO
C14/082-3
Member, IEEE SA Board of Governors
740 New Circle Rd Treasurer,
IEEE Standards Association
Lexington, Ky 40550 Member, IEEE Standards
Board & Chair PatCom
859-825-4808 (phone) Vice-Chair, INCITS Executive
Board
603-963-8352 (fax) Member, IEEE CS
SAB, W3C AC, ECMA Gen Assy
***************************************************************************