fumisano
commented
4 years ago An important difference between SP800-56B revision1 and revision 2 is that restriction on moduli for RSA.
NIST SP800-56B revision 1 supports only 2048 and 3072 moduli for RSA. Revision 2 supports moduli > 3072, for example 4096 bits.
It may effect the selection in FCS_COP.1.1(i) Refinement. "... the cryptographic key size [selection: 2048 bits, 3072 bits] that meet the following:". This selection may be restricted by the description in NIST SP800-56B revision 1. If the specification is revision 2 (or implicit revision number), FCS_COP.1.1(i) may support other key size greater than 2048 bits such as [selection: 2048 bits, 3072 bits, greater than 2048 bits].
What is the change request for the cPP? Please describe. Some specifications with revision are old and obsoleted by new specification. Not all the referred specification is written with additional revision/version information. I found that 4 specifications are referred with the additional information.
Describe the solution you'd like If revision number or published year number is not important, A solution is that remove the number. For example, write the specification name as NIST SP 800-56B, or ISO/IEC 10118-3.
Describe alternatives you've considered If revision number or published year number is important, correct number is required.
Additional context We should confirm the technical deference between old and new, in detail.