In July 2023, NIST’s Crypto Publication Review Board initiated a review of the following publications:
- Federal Information Processing Standard (FIPS) 202, SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions, 2015
- NIST Special Publication (SP) 800-185, SHA-3 Derived Functions: cSHAKE, KMAC, TupleHash, and ParallelHash, 2016
In response, NIST received public comments on FIPS 202 and SP 800-185.
NIST proposes to update FIPS 202 to improve its editorial quality. For example, text about SHA-1 and Triple DES will be edited to reflect the withdrawal of those techniques, as suggested in the public comments.
NIST proposes to revise SP 800-185 to provide “streaming” specifications of the two extendable output functions (XOFs) SHAKE128 and SHAKE256, to support implementations in which the length of the data output and the complete data input are not necessarily available before the XOF is called.
The public comments included suggestions that NIST specify and approve several other SHA-3 derived functions. NIST is considering whether to specify and approve one or more SHA-3 derived functions for authenticated encryption with associated data in a new, separate Special Publication.
Submit your comments on this decision proposal by October 7, 2024, to [email protected] with “Comments on FIPS 202 Decision Proposal” or “Comments on SP 800-185 Decision Proposal” in the subject line. Comments received in response to this request will be posted on the Crypto Publication Review Project site after the due date. Submitters’ names and affiliations (when provided) will be included, while contact information will be removed. See the project site for additional information about the review process.