Demo: 2023-3-2
Prod: 2023-3-21
- LMS algorithms:
- LMS keyGen 1.0 - New algorithm. Adds support for testing LMS key generation.
- LMS sigGen 1.0 - New algorithm. Adds support for testing LMS signature generation
- LMS sigVer 1.0 - New algorithm. Adds support for testing LMS signature verification.
- NOTE: LMS keyGen 1.0, sigGen 1.0 and sigVer 1.0 will not be enabled in Prod until further testing in Demo has been completed.
- kdf-components srtp 1.0 - Adds support for testing SRTP/SRTCP KDF implementations where a 48-bit quantity, i.e., 000...0 || 0 || SRTCP index, is used in the SRTCP key derivation (see IETF RFC Errata ID 7606 and https://csrc.nist.gov/csrc/media/publications/sp/800-135/rev-1/final/documents/sp800-135r1-informative-note-20160919.pdf) vs the 32-bit quantity, i.e., 0 || SRTCP index, defined in the original RFC 3711. This is accomplished with the addition of the supports48BitSrtcpIndex registration property.
- RSA keyGen FIPS186-4 and RSA keyGen FIPS186-5 - Fixes an issue where a "General exception. Contact service provider." would be returned when the RSA key generation parameters provided by an IUT ran afoul of the FIPS 186-4 "Compute a probable prime factor based on aux primes" failure condition at FIPS 186-4 C.9 Step 9. Instead of ending the validation with a General exception, an informative error is now logged for any offending test cases in the validation.json.
- kdf-components ansix9.63 1.0 - Adds testing support for SHA2-512/224, SHA2-512/256, SHA3-224, SHA3-256, SHA3-384 and SHA3-512.
- ECDSA sigGen FIPS186-5 - Adds testing support for SHAKE-128 and SHAKE-256
- RSA sigGen FIPS186-5 and RSA sigVer FIPS186-5 - Adds testing support for SHAKE and SHA3.