Thread Links			Date Links
Thread Prev	Thread Next	Thread Index	Date Prev	Date Next	Date Index

Re: [STDS-P1619] Fwd: [2600] NIST mulls algorithm for disk encryption

To: STDS-P1619@xxxxxxxxxxxxxxxxx
Subject: Re: [STDS-P1619] Fwd: [2600] NIST mulls algorithm for disk encryption
From: Laszlo Hars <Laszlo.Hars@xxxxxxxxxxx>
Date: Fri, 27 Jun 2008 19:29:37 -0400
Delivered-to: mhonarc@xxxxxxxxxxxxxxxx
In-reply-to: <596648080806271458w24b3f7c8t1121ec11af00e02f@xxxxxxxxxxxxxx>
List-help: <http://listserv.ieee.org/cgi-bin/wa?LIST=STDS-P1619>, <mailto:LISTSERV@LISTSERV.IEEE.ORG?body=INFO%20STDS-P1619>
List-owner: <mailto:STDS-P1619-request@LISTSERV.IEEE.ORG>
List-subscribe: <mailto:STDS-P1619-subscribe-request@LISTSERV.IEEE.ORG>
List-unsubscribe: <mailto:STDS-P1619-unsubscribe-request@LISTSERV.IEEE.ORG>
Reply-to: Laszlo.Hars@xxxxxxxxxxx

It looks like the missing information in the P1619.0 standard about its
applicability causes wide spread misunderstandings:

In the article P1619.0 is referred “as a standard for *encrypting*
block-oriented storage devices” instead of “a standard for *encryption
modules* for block-oriented storage devices”.

“IEEE 1619 ... addresses data storage on disk drives”. It addresses data
storage also on solid state memory, magnetic tapes, optical disks etc. The
overwhelming majority of encrypting disk drives doesn’t benefit from the
standard, and doesn’t use it, so the article picks the device, which is the
least affected.



                                                                           
             Jack Cole                                                     
             <jack.cole@xxxxxx                                             
             RG>                                                        To 
             No Phone Info             STDS-P1619@xxxxxxxxxxxxxxxxx        
             Available                                                  cc 
                                                                           
                                                                   Subject 
             06/27/2008 05:58          [STDS-P1619] Fwd: [2600] NIST mulls 
             PM                        algorithm for disk encryption       
                                                                           
                                                                           
             Please respond to                                             
                 Jack Cole                                                 
             <jack.cole@xxxxxx                                             
                    RG>                                                    
                                                                           
                                                                           






---------- Forwarded message ----------
From: Don Wright <don@xxxxxxxxxxx>
Date: Fri, Jun 27, 2008 at 4:06 PM
Subject: [2600] NIST mulls algorithm for disk encryption
To: STDS-2600@xxxxxxxxxxxxxxxxx



From Government Computer News
http://www.gcn.com/online/vol1_no1/46503-1.html?topic=security#

NIST mulls algorithm for disk encryption


By William Jackson

A new algorithm has been submitted to the National Institute of Standards
and Technology as a new mode of operation for the Advanced Encryption
Standard.
(Embedded image moved to file: pic24390.gif)
The XTS-AES already has been approved by the Institute of Electrical and
Electronics Engineers as a standard for encrypting block-oriented storage
devices, and IEEE has submitted it to NIST to get required approval for use
by agencies.
(Embedded image moved to file: pic10425.gif)
"Subject to the 90-day period of public comment, NIST proposes to approve
XTS for government use under auspices of FIPS Pub. 140-2," the Federal
Information Processing Standard for encryption modules, the agency
announced earlier this month.
(Embedded image moved to file: pic26255.gif)
AES is the current federal standard encryption algorithm. The IEEE Security
in Storage Working Group developed a standard architecture for encrypted
shared-storage media based on a specific mode of operation for AES. The
working group originally focused on using AES in an alternative mode called
LRW, but this was replaced with the XTS mode in 2006 because of weaknesses
in the LRW mode. IEEE 1619, "Standard for Cryptographic Protection of Data
on Block-Oriented Storage Devices," which addresses data storage on disk
drives, was approved in December 2007.
(Embedded image moved to file: pic13163.gif)
"Security in storage impacts all kinds of financial transactions,
third-party storage of corporate data, military operations, health care
information and all other segments of the critical infrastructure of
society," said Jack Cole, chairman of the IEEE Information Assurance
Standards Committee.
(Embedded image moved to file: pic31467.gif)
But the standard's use in government applications requires NIST approval as
an approved mode of operation under FIPS 140-2. Although the agency
proposes to approve the standard, it may specify additional requirements or
restrictions for government use.
(Embedded image moved to file: pic05792.gif)
IEEE has agreed to make a relevant extract from the standard available free
of charge during the public-comment period. After the comment period, the
standard would be available for purchase from IEEE at $85 for members and
affiliates and $105 for nonmembers.
(Embedded image moved to file: pic14231.gif)
Comments should be e-mailed to EncryptionModes@xxxxxxxx by Sept. 3. NIST
particularly seeks comments on:
      The XTS-AES algorithm itself.
      Depth of industry support.
      Appeal of the algorithm for wider applications.
      Proposal to make the specification available only by purchase from
      IEEE.
      Concerns about intellectual-property rights.


***************************************************************************
Don Wright                   don@xxxxxxxxxxx
                             f.wright@xxxxxxxx / f.wright@xxxxxxxxxxxx
Director of Standards
Lexmark International        Director, ANSI & IEEE-ISTO
C14/082-3                    Member, IEEE SA Board of Governors
740 New Circle Rd            Treasurer, IEEE Standards Association
Lexington, Ky 40550          Member, IEEE Standards Board & Chair PatCom
859-825-4808 (phone)         Vice-Chair, INCITS Executive Board
603-963-8352 (fax)           Member, IEEE CS SAB, W3C AC, ECMA Gen Assy
***************************************************************************

Attachment: pic24390.gif
Description: GIF image

Attachment: pic10425.gif
Description: GIF image

Attachment: pic26255.gif
Description: GIF image

Attachment: pic13163.gif
Description: GIF image

Attachment: pic31467.gif
Description: GIF image

Attachment: pic05792.gif
Description: GIF image

Attachment: pic14231.gif
Description: GIF image

References:
- [STDS-P1619] Fwd: [2600] NIST mulls algorithm for disk encryption
  - From: Jack Cole

Prev by Date: [STDS-P1619] Reminder: Next SISWG face-to-face meeting will be July 29-30th at HDS in San Jose, CA
Next by Date: [STDS-P1619] Fwd: [2600] NIST mulls algorithm for disk encryption
Previous by thread: [STDS-P1619] Fwd: [2600] NIST mulls algorithm for disk encryption
Next by thread: [STDS-P1619] Reminder: Next SISWG face-to-face meeting will be July 29-30th at HDS in San Jose, CA
Index(es):
- Date
- Thread