Will Silent Phone’s protocol pass FIPS-140 validation?

ZRTP-based products must receive FIPS-140 validation in order to be sold to US government customers, or to the governments of some other countries. To facilitate this, ZRTP uses only FIPS-approved algorithms in all relevant categories. To meet the FIPS-140 validation requirements set by NIST FIPS PUB 140-2 Annex A and NIST FIPS PUB 140-2 Annex D , ZRTP is compliant with:
NIST SP 800-56A - Recommendation for Pair-Wise Key Establishment Schemes Using Discrete Logarithm Cryptography
NIST SP 800-108 - Recommendation for Key Derivation Using Pseudorandom Functions
NIST FIPS PUB 198-1 - The Keyed-Hash Message Authentication Code (HMAC)
NIST FIPS PUB 180-3 - Secure Hash Standard (SHS)
NIST SP 800-38A - Recommendation for Block Cipher Modes of Operation
NIST FIPS PUB 197 - Advanced Encryption Standard (AES)
NSA Suite B Cryptography

  • 71
  • 12-Jun-2017
  • 100 Views