lewyble
commented
3 years ago Changes have been made, but question emailed to @dmhale1
Dianne if the changes are correct please comment stating that and close out comment.
Open dmhale1 opened 4 years ago
lewyble
commented
3 years ago Changes have been made, but question emailed to @dmhale1
Dianne if the changes are correct please comment stating that and close out comment.
dmhale1
commented
3 years ago The SFR is fine, but I will update the app note to make it clear. Safe primes are included in 800-56ar3 so we don't have to spell it out in FCS_CKM.2.
jfisherbah
commented
3 years ago As mentioned earlier in the thread the SFRs themselves currently appear to correspond with TD0502 as-is so no changes should be needed there. Adding the following statement to the end of the app note for FCS_CKM.2/UNLOCKED for clarity:
"The finite field-based key establishment schemes that conform to NIST SP 800-56A Revision 3 correspond to the "safe-prime" groups selection in FCS_CKM.1.1."
Just published TD0502 for FCS_CKM.1 and FCS_CKM.2 for MDF 3.1 to accurately reflect what we need to align with SP 800-56A Revision 3. Please ensure this version aligns with the TD as needed.