Skip to content

v1.1.0.38

Latest
Latest
Compare
Choose a tag to compare
@livebe01 livebe01 released this 28 Jan 22:08
v1.1.0.38
35b181d

Demo: 2025-01-14
Prod: 2025-01-31

ATTENTION: THIS RELEASE INTRODUCES SEVERAL IMPORTANT CHANGES AND INCOMPATIBILITIES RELATED TO THE EDDSA sigGen 1.0, SLH-DSA, ML-DSA, AND ML-KEM ALGORITHM TESTING. PLEASE READ THE RELEASE NOTES THAT FOLLOW CAREFULLY. IF YOU HAVE ANY QUESTIONS, FEEL FREE TO OPEN A NEW ISSUE AT https://github.com/usnistgov/ACVP/issues OR https://github.com/usnistgov/ACVP-Server/issues.

  • EDDSA sigGen 1.0 - Testing is updated to make the contextLength registration property mandatory, when applicable, i.e., when curve contains ED-448 or preHash == true. contextLength is now also disallowed when not applicable, i.e., when curve == ED-25519 and preHash == false.
  • ML-DSA sigGen FIPS204, ML-DSA sigVer FIPS204, SLH-DSA sigGen FIPS205, and SLH-DSA sigVer FIPS205 - Updates ML-DSA and SLH-DSA sign and verify testing to include tests for the external interfaces defined in FIPS 204 Section 5 and FIPS 205 Section 10. Also updates the ML-DSA sign and verify testing to support externally computed mu as allowed in the FIPS 204 comments for Algorithm 7 Line 6 and Algorithm 8 Line 7.
    • Please note that adding support for ML-DSA and SLH-DSA external interface testing changes the format of ML-DSA and SLH-DSA sigGen and sigVer registrations significantly. Please consult the ML-DSA and SLH-DSA algorithm specifications at https://pages.nist.gov/ACVP/#supported and the sample test vectors at https://github.com/usnistgov/ACVP-Server/tree/master/gen-val/json-files for the updated formats for ML-DSA and SLH-DSA sigGen and sigVer registrations.
    • Please also note that any ML-DSA and SLH-DSA sigGen and sigVer test vectors that were generated on an ACVTS release prior to v1.1.0.38 cannot have their responses submitted for validation using an ACVTS release >= v1.1.0.38. Any such test vectors will need to be abandoned and new test vectors created.
  • ML-KEM encapDecap FIPS203 - ML-KEM encapDecap FIPS203 decapsulation test vectors that were generated on an ACVTS release prior to v1.1.0.38 cannot have their responses submitted for validation using an ACVTS release >= v1.1.0.38. Any such test vectors will need to be abandoned and new test vectors created.
  • SHAKE-128 1.0 and SHAKE-256 1.0 - Corrects issue where message digest values were computed incorrectly for non-byte-aligned outputLens. (Note that the completeness of this fix is still being investigating relative to some recent feedback.)
Assets 2
Loading