NIST has decided to revise SP 800-38A, "Recommendation for Block Cipher Modes of Operation: Methods and Techniques." Read this announcement for more details.
In May 2021, NIST's Crypto Publication Review Board initiated a review process for the following two publications:
and received public comments.
In March 2022, the board proposed revising SP 800-38A and converting the SP 800-38A Addendum by merging it into the revised SP 800-38A, and received additional comments on that proposed decision.
NIST has decided to revise SP 800-38A and to convert the SP 800-38A Addendum. The main goals of these actions are to
In general, the confidentiality-only modes of SP 800-38A have security vulnerabilities as described in detail in the initial public draft of NIST IR 8459. NIST intends to explore the possibility of approving a tweakable wide encryption technique in order to provide a more secure alternative for encryption applications. Such a technique could also be adapted to provide authenticated encryption with associated data (AEAD) and key wrapping. NIST plans to explore this possibility in some depth at the Third NIST Workshop on Block Cipher Modes of Operation 2023. If a suitable additional technique is eventually approved in a new publication, NIST will consider deprecating the modes in SP 800-38A.
The effort to revise SP 800-38A has not yet begun but will follow the typical process of releasing an initial draft for public comment. Monitor progress on CSRC News and CSRC Publications and by subscribing to email updates.