AGENCY:

National Institutes of Standards and Technology (NIST), Commerce.

ACTION:

Notice, request for comments.

SUMMARY:

This notice announces Draft Federal Information Processing Standard (FIPS) 180-2, Secure Hash Standard (SHS), for public review and comment. The draft standard, designated “Draft FIPS 180-2,” is proposed to supersede FIPS 180-1.

Published in 1992, FIPS 180-1 specified that the standard be reviewed within five years. The standard specifies a secure hash algorithm, designated SHA-1, which produces a 160-bit output called a message digest. To provide for comparability with the anticipated increase in security to be afforded by the use of the Advanced Encryption Standard (currently under development), NIST is proposing the expansion of the hash standard to include additional algorithms that produce a 256-bit, 384-bit, and 512-bit message digest. The proposed standard is available at http://www.nist.gov/​sha.

Prior to the submission of this proposed standard to the Secretary of Commerce for review and approval, it is essential that consideration is given to the needs and views of the public, users, the information technology industry, and Federal, State, and local government organizations. The purpose of this notice is to solicit such views.

DATES:

Comments must be received on or before August 28, 20001.

ADDRESSES:

Written comments may be sent to: Chief, Computer Security Division, Information Technology Laboratory, Attention: Comments on Draft FIPS 180-2, 100 Bureau Drive, Stop 8930, National Institute of Standards and Technology, Gaithersburg, MD 20899-8930.

Electronic Comments may be sent to: Proposed 180-2@nist.gov.

The current FIPS 180-1 and its proposed replacement, Draft FIPS 180-2, are available electronically at http://www.nist.gov/​sha.

Comments received in response to this notice will be published electronically at http://www.nist.gov/​sha.

FOR FURTHER INFORMATION CONTACT:

Elaine Barker, Computer Security Division, National Institutes of Standards and Technology, Gaithersburg, MD 20899-8930, telephone (301) 975-2911, e-mail: elaine.barker@nist.gov.

SUPPLEMENTARY INFORMATION:

FIPS 180-1, Secure Hash Standard, issued in 1995, specifies a secure has algorithm, designated SHA-1, for computing a condensed representation of a message or a data file. When a data is input, the SHA-1 produces a 160-bit output called a message digest. The message digest can then be used as input to a digital signature algorithm that generates or verifies the digital signature for a message. Other uses of a message digest include the generation of random numbers and keyed hash message authentication codes.

As technology advances, the input parameters used by signature algorithms must be increased to provide adequate security. One of these inputs is the message digest. Therefore, as part of the five-year review of the hash standard, Draft FIPS 180-2 proposed additional has algorithms with outputs of 256-bit, 384-bit and 512-bits. The additional algorithms will produce outputs that will provide security comparable to that projected for the Advanced Encryption Standard.

Authority: NIST's activities to develop computer security standards to protect Federal sensitive (unclassified) systems are undertaken pursuant to specific responsibilities assigned to NIST in Section 5131 of the Information Technology Management Reform Act of 1996 (P.L. 104-106), the Computer Security Act of 1987 (P.L. 100-235), and Appendix III to Office of Management and Budget Circular A-130.

Executive Order 12866: This notice has been determined to be non-significant for the purposes of Executive Order 12866.