Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic and Security Testing LAP

The Cryptographic and Security Testing (CST) Laboratory Accreditation Program (LAP), initially named Cryptographic Module Testing (CMT), was established by NVLAP to accredit laboratories that perform cryptographic modules validation conformance testing under the Cryptographic Module Validation Program (CMVP). In response to other mandates and requests, additional testing has been added to the program to include algorithm testing for the Cryptographic Algorithm Validation Program (CAVP), testing to improving the identification and authentication of Federal employees and contractors for access to Federal facilities and information systems for the NIST Personal Identification Verification Program (NPIVP), test methods for the GSA FIPS 201 Evaluation Program which build upon NPIVP test methods as the GSA Precursor (GSAP), testing to validate the implementation of the Security Content Automation Protocol (SCAP) standards within security software modules, and conformance testing to methods supportive of the Department of Homeland Security's Identity and Privilege Credential Management; e.g, Transportation Worker Identification Credential (TWIC).

Proficiency Testing Requirements

At the present time, there is no ongoing established program for proficiency testing of laboratories accredited for cryptographic and security testing beyond the initial artifact testing that is completed by an initial applicant to the program.

Requirements Documents

References and Information



Created July 18, 2013, Updated March 29, 2024