Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
The workshop covers topics on the validation of entropy sources conforming to NIST SP 800-90B, with the goal of helping the community design and test entropy sources and prepare reports for submission. The authors of SP 800-90B and members of the Cryptographic Module Validation Program (CMVP) from NIST and CCCS will present on data collection, heuristic and mathematical modeling of noise sources, current status of the SP 800-90 series, vendor-defined health tests, observations from our pre-review process and other topics of interest. NIST will demonstrate the Entropy Source Validation Test System (ESVTS) and talk about the planned separate Entropy Source Validation scope. We will also have panel and Q & A sessions. Each day consists of two, two-hour sessions with a half hour break at 12 noon EDT (UTC-4:00) in the middle. The workshop will be of interest to NVLAP-accredited Cryptographic Security Testing (CST) laboratories, vendors of entropy sources and modules that incorporate entropy sources, validation authorities who reference FIPS 140-2/FIPS 140-3 module certificates and other interested parties. Talks and panels will be recorded and publicly available with closed captioning after the event.
Agenda
| Time (ET) | Title | Speaker(s) |
|---|---|---|
| Tuesday, April 27, 2021 | ||
| 10:00 AM | Workshop Introduction | Tim Hall (NIST) |
| 10:15 AM | SP 800-90 Series Update | Meltem Sonmez Turan (NIST) |
| 11:00 AM | IG 7.19 and Draft IG 7.20 | Alex Calis (NIST) and Allen Roginsky (NIST) |
| 11:30 AM | Data collection | Alex Calis (NIST) and Allen Roginsky (NIST) |
| 12:00 PM | LUNCH | |
| 12:30 PM | Heuristic and mathematical models | John Kelsey (NIST) |
| 1:00 PM | Health tests | John Kelsey (NIST) |
| 1:30 PM | Open Q&A with Panel | Kim Schaffer (NIST), moderator |
| 2:30 PM | End Day 1 | |
| Wednesday, April 28, 2021 | ||
| 10:00 AM | PANEL - Lessons learned from pre-reviews - Calis, Roginsky | Tim Hall (NIST), Jonathan Ng Cheng Hin (CCCS), Erin McAfee (CCCS), Alex Calis (NIST), Allen Roginsky (NIST) |
| 11:00 AM | Demo of ESV Server and Architecture | Chris Celi (NIST) |
| 12:00 PM | LUNCH | |
| 12:30 PM | BSI Update | Werner Schindler (BSI) |
| 1:00 PM | 90C Update | Allen Roginsky (NIST) and Meltem Sonmez Turan (NIST) |
| 1:30 PM | Open Q&A with Panel | Kim Schaffer (NIST), moderator |
| 2:30 PM | End Day 2 | |
| Thursday, April 29, 2021 | ||
| 10:00 AM | Physical (hardware) entropy sources | John Kelsey (NIST), Chris Celi (NIST) |
| 10:30 AM | Non-physical (software) entropy sources | Tim Hall (NIST) |
| 11:00 AM | Conditioning components | Tim Hall (NIST) |
| 11:30 AM | Old process v. New process from a submitter | Chris Celi (NIST) |
| 12:00 PM | LUNCH | |
| 12:30 PM | New Validation Scope for Entropy Sources | Brad Moore (NIST) and Chris Celi (NIST) |
| 1:00 PM | Impact on CMVP review and certification process | Carolyn French (CCCS) |
| 1:30 PM | Open Q&A with Panel | Kim Schaffer (NIST), moderator |
| 2:30 PM | End Day 3 | |