Federal Information Processing Standard (FIPS) 186-4, Digital Signature Standard; Request for Comments on the NIST-Recommended Elliptic Curves, 63539-63541 [2015-26539]

Download as PDF Federal Register / Vol. 80, No. 202 / Tuesday, October 20, 2015 / Notices Cash Deposit Rates Pursuant to Remand Redetermination.’’ 63539 Dated: October 8, 2015. Paul Piquado, Assistant Secretary for Enforcement and Compliance. Appendix: Revised Antidumping Duty Cash Deposit Rates Pursuant To Remand Redetermination Revised AD cash deposit rate (%) Exporter Producer BEIJING SAI LIN KE HARDWARE CO., LTD ........................... XUZHOU GUANG HUAN STEEL TUBE PRODUCTS CO., LTD. BENXI NORTHERN PIPES CO., LTD ....................................... DALIAN BROLLO STEEL TUBES LTD ..................................... GUANGDONG WALSALL STEEL PIPE INDUSTRIAL CO. LTD. HENGSHUI JINGHUA STEEL PIPE CO., LTD ......................... HULUDAO STEEL PIPE INDUSTRIAL CO ............................... JIANGSU GUOQIANG ZINC–PLATING INDUSTRIAL CO., LTD. JIANGYIN JIANYE METAL PRODUCTS CO., LTD .................. KUNSHAN HONGYUAN MACHINERY MANUFACTURE CO., LTD. KUNSHAN LETS WIN STEEL MACHINERY CO., LTD ............ QINGDAO XIANGXING STEEL PIPE CO., LTD ....................... SHANDONG XINYUANGROUP CO., LTD ................................ SHANDONG XINYUAN GROUP CO., LTD ............................... BENXI NORTHERN PIPES CO., LTD ....................................... 69.2 BAZHOU DONG SHENG HOT-DIPPED GALVANIZED STEEL PIPE CO., LTD. BAZHOU ZHUOFA STEEL PIPE CO. LTD ............................... TIANJIN JINGHAI COUNTY BAOLAI BUSINESS AND INDUSTRY CO. LTD. TIANJIN HEXING STEEL CO., LTD .......................................... TIANJIN RUITONG STEEL CO., LTD ....................................... TIANJIN YAYI INDUSTRIAL CO ................................................ TANGSHAN FENGNAN DISTRICT XINLIDA STEEL PIPE CO., LTD. TIANJIN LIFENGYUANDA STEEL GROUP .............................. TIANJIN LITUO STEEL PRODUCTS CO .................................. TIANJIN XINGYUNDA STEEL PIPE CO ................................... GUANGDONG WALSALL STEEL PIPE INDUSTRIAL CO. LTD. BAZHOU DONG SHENG HOT-DIPPED GALVANIZED STEEL PIPE CO., LTD. WEIFANG EAST STEEL PIPE CO., LTD .................................. WUXI ERIC STEEL PIPE CO., LTD .......................................... WUXI FASTUBE INDUSTRY CO., LTD .................................... ZHANGJIAGANG ZHONGYUAN PIPE-MAKING CO., LTD ...... ................................................................................................ 69.2 BENXI NORTHERN PIPES CO., LTD ....................................... DALIAN BROLLO STEEL TUBES LTD ..................................... GUANGDONG WALSALL STEEL PIPE INDUSTRIAL CO. LTD. HENGSHUI JINGHUA STEEL PIPE CO., LTD ......................... HULUDAO STEEL PIPE INDUSTRIAL CO ............................... JIANGSU GUOQIANG ZINC-PLATING INDUSTRIAL CO., LTD. JIANGYIN JIANYE METAL PRODUCTS CO., LTD .................. KUNSHAN HONGYUAN MACHINERY MANUFACTURE CO., LTD. KUNSHAN LETS WIN STEEL MACHINERY CO., LTD ............ QINGDAO XIANGXING STEEL PIPE CO., LTD ....................... QINGDAO YONGJIE IMPORT & EXPORT CO., LTD .............. RIZHAO XINGYE IMPORT & EXPORT CO., LTD .................... SHANGHAI METALS & MINERALS IMPORT & EXPORT CORP. SHENYANG BOYU M/E CO., LTD ............................................ SHIJIAZHUANG ZHONGQING IMP & EXP CO., LTD .............. TIANJIN BAOLAI INT’L TRADE CO., LTD ................................ TIANJIN TIANJIN TIANJIN TIANJIN NO. 1 STEEL ROLLED CO., LTD ............................... NO. 1 STEEL ROLLED CO., LTD ............................... NO. 1 STEEL ROLLED CO., LTD ............................... XINGYUDA IMPORT & EXPORT CO., LTD ............... TIANJIN XINGYUDA IMPORT & EXPORT CO., LTD ............... TIANJIN XINGYUDA IMPORT & EXPORT CO., LTD ............... TIANJIN XINGYUDA IMPORT & EXPORT CO., LTD ............... WAH CIT ENTERPRISE ............................................................ WAI MING (TIANJIN) INT’L TRADING CO., LTD ..................... WEIFANG EAST STEEL PIPE CO., LTD .................................. WUXI ERIC STEEL PIPE CO., LTD .......................................... WUXI FASTUBE INDUSTRY CO., LTD .................................... ZHANGJIAGANG ZHONGYUAN PIPE-MAKING CO., LTD ...... PRC-WIDE ENTITY .................................................................... [FR Doc. 2015–26601 Filed 10–19–15; 8:45 am] BILLING CODE 3510–DS–P DEPARTMENT OF COMMERCE National Institute of Standards and Technology mstockstill on DSK4VPTVN1PROD with NOTICES [Docket No. 150923882–5882–01] Federal Information Processing Standard (FIPS) 186–4, Digital Signature Standard; Request for Comments on the NIST-Recommended Elliptic Curves National Institute of Standards and Technology (NIST), Commerce. ACTION: Notice and request for comments. AGENCY: VerDate Sep<11>2014 17:55 Oct 19, 2015 Jkt 238001 PO 00000 Frm 00042 Fmt 4703 Sfmt 4703 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 69.2 85.55 The National Institute of Standards and Technology (NIST) requests comments on Federal Information Processing Standard (FIPS) 186–4, Digital Signature Standard, which has been in effect since July 2013. FIPS 186–4 specifies three techniques for the generation and verification of digital signatures that can be used for the protection of data: the Rivest-Shamir-Adleman Algorithm (RSA), the Digital Signature Algorithm (DSA), and the Elliptic Curve Digital Signature Algorithm (ECDSA), along with a set of elliptic curves recommended for government use. NIST SUMMARY: E:\FR\FM\20OCN1.SGM 20OCN1 mstockstill on DSK4VPTVN1PROD with NOTICES 63540 Federal Register / Vol. 80, No. 202 / Tuesday, October 20, 2015 / Notices is primarily seeking comments on the recommended elliptic curves specified in Appendix D of the FIPS, but comments on other areas of the FIPS will also be considered. FIPS 186–4 is available at http://dx.doi.org/10.6028/ NIST.FIPS.186–4. DATES: Comments on FIPS 186–4 must be received on or before December 4, 2015. ADDRESSES: Comments on FIPS 186–4 may be sent electronically to FIPS186comments@nist.gov with ‘‘Comment on FIPS 186’’ in the subject line. Written comments may also be submitted by mail to Information Technology Laboratory, ATTN: FIPS 186–4 Comments, National Institute of Standards and Technology, 100 Bureau Drive, Mail Stop 8930, Gaithersburg, MD 20899–8930. The current FIPS 186–4 can be found at http://dx.doi.org/10.6028/NIST. FIPS.186-4. Comments received in response to this notice will be published electronically at http://csrc.nist.gov/, so commenters should not include information they do not wish to be posted (e.g., personal or confidential business information). FOR FURTHER INFORMATION CONTACT: Dr. Lily Chen, Computer Security Division, National Institute of Standards and Technology, 100 Bureau Drive, Mail Stop 8930, Gaithersburg, MD 20899– 8930, email: Lily.Chen@nist.gov, phone: (301) 975–6974. SUPPLEMENTARY INFORMATION: FIPS 186 was initially developed by NIST in collaboration with the National Security Agency (NSA), using the Digital Signature Algorithm (DSA). Later versions of the standard approved the use of the Elliptic Curve Digital Signature Algorithm (ECDSA) and the Rivest-Shamir-Adleman (RSA) algorithm. American Standards Committee (ASC) X9 developed standards specifying the use of both ECDSA and RSA, including methods for generating key pairs, which were used as the basis for the later versions of FIPS 186. The ECDSA was included by reference in FIPS 186–2, the second revision to FIPS 186, which was announced in the Federal Register (65 FR 7507) and became effective on February 15, 2000. The FIPS was revised in order to align the standard with new digital signature algorithms included in ASC X9 standards. To facilitate testing and interoperability, NIST needed to specify elliptic curves that could be used with ECDSA. Working in collaboration with the NSA, NIST included three sets of VerDate Sep<11>2014 17:55 Oct 19, 2015 Jkt 238001 recommended elliptic curves in FIPS 186–2 that were generated using the algorithms in the ANS X9.62 standard and Institute of Electrical and Electronics Engineers (IEEE) P1363 standards. The provenance of the curves was not fully specified, leading to recent public concerns that there could be an unknown weakness in these curves. NIST is not aware of any vulnerability in these curves when they are implemented correctly and used as described in NIST standards and guidelines. In the fifteen years since FIPS 186–2 was published, elliptic curve cryptography (ECC) has seen slow adoption outside certain communities. Past discussions on this topic have cited several possible reasons for this, including interoperability issues, performance characteristics, and concerns over intellectual property. In addition, advances in the understanding of elliptic curves within the cryptographic community have led to the development of new elliptic curves and algorithms whose designers claim to offer better performance and are easier to implement in a secure manner. Some of these curves are under consideration in voluntary, consensusbased Standards Developing Organizations. In 2014, NIST’s primary external advisory board, the Visiting Committee on Advanced Technology (VCAT), conducted a review of NIST’s cryptographic standards program. As part of their review, the VCAT recommended that NIST ‘‘generate a new set of elliptic curves for use with ECDSA in FIPS 186.’’ In June 2015, NIST hosted the technical workshop on Elliptic Curve Cryptography Standards to discuss possible approaches to promote the adoption of secure, interoperable and efficient elliptic curve mechanisms. Workshop participants expressed significant interest in the development, standardization and adoption of new elliptic curves. As a result of this input, NIST is considering the addition of new elliptic curves to the current set of recommended curves in FIPS 186–4. Comments received in response to this solicitation will be used to identify the needs, processes and goals for possible future standards activities. Request for Comments NIST requests comments on the following questions regarding the elliptic curves recommended in FIPS 186–4, but comments on other areas of the FIPS will also be considered. The responses to this solicitation will be used to plan possible improvements to PO 00000 Frm 00043 Fmt 4703 Sfmt 4703 the FIPS, including the set of algorithms and elliptic curves specified in the FIPS. 1. Digital Signature Schemes a. Do the digital signature schemes and key sizes specified in FIPS 186–4 satisfy the security requirements of applications used by industry? b. Are there other digital signature schemes that should be considered for inclusion in a future revision to FIPS 186? What are the advantages of these schemes over the existing schemes in FIPS 186? 2. Security of Elliptic Curves a. Do the NIST-recommended curves satisfy the security requirements of applications used by industry? b. Are there any attacks of cryptographic significance on Elliptic Curve Cryptography that apply to the NIST-recommended curves or other widely used curves? 3. Elliptic Curve Specifications and Criteria a. Is there a need for new elliptic curves to be considered for standardization? b. If there is a need, what criteria should NIST use to evaluate any curves to be considered for inclusion? c. Do you anticipate a need to create, standardize or approve new elliptic curves on an ongoing basis? 4. Adoption a. Which of the approved digital signature schemes and NISTrecommended curves have been used in practice? b. Which elliptic curves are accepted for use in international markets? 5. Interoperability a. If new curves were to be standardized, what would be the impact of changing existing implementations to allow for the new curves? b. What is the impact of having several standardized curves on interoperability? c. What are the advantages or disadvantages of allowing users or applications to generate their own elliptic curves, instead of using standardized curves? 6. Performance a. Do the performance characteristics of existing implementations of the digital signatures schemes approved in FIPS 186–4 meet the requirements of applications used by industry? 7. Intellectual Property a. What are the desired intellectual property requirements for any new E:\FR\FM\20OCN1.SGM 20OCN1 Federal Register / Vol. 80, No. 202 / Tuesday, October 20, 2015 / Notices curves or schemes that could potentially be included in the Standard? b. What impact has intellectual property concerns had on the adoption of elliptic curve cryptography? Authority: In accordance with the Information Technology Management Reform Act of 1996 (Pub. L. 104–106) and the Federal Information Security Management Act of 2002 (FISMA) (Pub. L. 107–347), the Secretary of Commerce is authorized to approve FIPS. NIST activities to develop computer security standards to protect federal sensitive (unclassified) information systems are undertaken pursuant to specific responsibilities assigned to NIST by Section 20 of the National Institute of Standards and Technology Act (15 U.S.C. 278g–3), as amended. Richard Cavanagh, Acting Associate Director for Laboratory Programs. Strategic Operating Plans. Respondents will include longline fishers in American Samoa and their participation in the economic data collection will be voluntary. Affected Public: Business or other forprofit organizations. Frequency: On occasion. Respondent’s Obligation: Voluntary. This information collection request may be viewed at reginfo.gov. Follow the instructions to view Department of Commerce collections currently under review by OMB. Written comments and recommendations for the proposed information collection should be sent within 30 days of publication of this notice to OIRA_Submission@ omb.eop.gov or fax to (202) 395–5806. Dated: October 14, 2015. Sarah Brabson, NOAA PRA Clearance Officer. [FR Doc. 2015–26539 Filed 10–19–15; 8:45 am] BILLING CODE 3510–13–P [FR Doc. 2015–26508 Filed 10–19–15; 8:45 am] BILLING CODE 3510–22–P DEPARTMENT OF COMMERCE National Oceanic and Atmospheric Administration DEPARTMENT OF COMMERCE National Oceanic and Atmospheric Administration mstockstill on DSK4VPTVN1PROD with NOTICES Submission for OMB Review; Comment Request The Department of Commerce will submit to the Office of Management and Budget (OMB) for clearance the following proposal for collection of information under the provisions of the Paperwork Reduction Act (44 U.S.C. Chapter 35). Agency: National Oceanic and Atmospheric Administration (NOAA). Title: Cost-Earnings Survey of American Samoa Longline Fishery. OMB Control Number: 0648-xxxx. Form Number(s): None. Type of Request: Regular (request for a new information collection). Number of Respondents: 20. Average Hours per Response: 30 minutes. Burden Hours: 10. Needs and Uses: This request is for a new information collection. The National Marine Fisheries Service (NMFS) proposes to collect information about annual base fishing expenses in the American Samoa longline fishery with which to conduct economic analyses that will improve fishery management in those fisheries; satisfy NMFS’ legal mandates under Executive Order 12866, the Magnuson-Steven Fishery Conservation and Management Act (U.S.C. 1801 et seq.), the Regulatory Flexibility Act, the Endangered Species Act, and the National Environmental Policy Act; and quantify achievement of the performances measures in the NMFS VerDate Sep<11>2014 17:55 Oct 19, 2015 Jkt 238001 Submission for OMB Review; Comment Request The Department of Commerce will submit to the Office of Management and Budget (OMB) for clearance the following proposal for collection of information under the provisions of the Paperwork Reduction Act (44 U.S.C. Chapter 35). Agency: National Oceanic and Atmospheric Administration (NOAA). Title: Fishery Products Subject to Trade Restrictions Pursuant to Certification Under the High Seas Driftnet Fishing Moratorium Protection Act. OMB Control Number: 0648–0651. Form Number(s): None. Type of Request: Regular (extension of a currently approved information collection). Number of Respondents: 60. Average Hours per Response: 10 minutes. Burden Hours: 100. Needs and Uses: This request is for extension of a currently approved information collection. Pursuant to the High Seas Driftnet Fishing Moratorium Protection Act (Moratorium Protection Act), if certain fish or fish products of a nation are subject to import prohibitions to facilitate enforcement, the National Marine Fisheries Service (NMFS) requires that other fish or fish products PO 00000 Frm 00044 Fmt 4703 Sfmt 4703 63541 from that nation that are not subject to the import prohibitions must be accompanied by documentation of admissibility. A duly authorized official/agent of the applicant’s Government must certify that the fish in the shipments being imported into the United States (U.S.) are of a species that are not subject to an import restriction of the U.S. If a nation is identified under the Moratorium Protection Act and fails to receive a certification decision from the Secretary of Commerce, products from that nation that are not subject to the import prohibitions must be accompanied by the documentation of admissibility. Affected Public: Business or other forprofit organizations. Frequency: On occasion. Respondent’s Obligation: Mandatory. This information collection request may be viewed at reginfo.gov. Follow the instructions to view Department of Commerce collections currently under review by OMB. Written comments and recommendations for the proposed information collection should be sent within 30 days of publication of this notice to OIRA_Submission@omb.eop.gov or fax to (202) 395–5806. Dated: October 14, 2015. Sarah Brabson, NOAA PRA Clearance Officer. [FR Doc. 2015–26566 Filed 10–19–15; 8:45 am] BILLING CODE 3510–22–P DEPARTMENT OF COMMERCE National Telecommunications and Information Administration Membership of the National Telecommunications and Information Administration’s Performance Review Board National Telecommunications and Information Administration, Department of Commerce. ACTION: Notice of Membership on the National Telecommunications and Information Administration’s Performance Review Board. AGENCY: In accordance with 5 U.S.C. § 4314(c)(4), the National Telecommunications and Information Administration (NTIA), Department of Commerce (DOC), announces the appointment of those individuals who have been selected to serve as members of NTIA’s Performance Review Board. The Performance Review Board is responsible for (1) reviewing performance appraisals and rating of SUMMARY: E:\FR\FM\20OCN1.SGM 20OCN1

Agencies

[Federal Register Volume 80, Number 202 (Tuesday, October 20, 2015)]
[Notices]
[Pages 63539-63541]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2015-26539]


-----------------------------------------------------------------------

DEPARTMENT OF COMMERCE

National Institute of Standards and Technology

[Docket No. 150923882-5882-01]


Federal Information Processing Standard (FIPS) 186-4, Digital 
Signature Standard; Request for Comments on the NIST-Recommended 
Elliptic Curves

AGENCY: National Institute of Standards and Technology (NIST), 
Commerce.

ACTION: Notice and request for comments.

-----------------------------------------------------------------------

SUMMARY: The National Institute of Standards and Technology (NIST) 
requests comments on Federal Information Processing Standard (FIPS) 
186-4, Digital Signature Standard, which has been in effect since July 
2013. FIPS 186-4 specifies three techniques for the generation and 
verification of digital signatures that can be used for the protection 
of data: the Rivest-Shamir-Adleman Algorithm (RSA), the Digital 
Signature Algorithm (DSA), and the Elliptic Curve Digital Signature 
Algorithm (ECDSA), along with a set of elliptic curves recommended for 
government use. NIST

[[Page 63540]]

is primarily seeking comments on the recommended elliptic curves 
specified in Appendix D of the FIPS, but comments on other areas of the 
FIPS will also be considered. FIPS 186-4 is available at http://dx.doi.org/10.6028/NIST.FIPS.186-4.

DATES: Comments on FIPS 186-4 must be received on or before December 4, 
2015.

ADDRESSES: Comments on FIPS 186-4 may be sent electronically to 
FIPS186-comments@nist.gov with ``Comment on FIPS 186'' in the subject 
line. Written comments may also be submitted by mail to Information 
Technology Laboratory, ATTN: FIPS 186-4 Comments, National Institute of 
Standards and Technology, 100 Bureau Drive, Mail Stop 8930, 
Gaithersburg, MD 20899-8930.
    The current FIPS 186-4 can be found at http://dx.doi.org/10.6028/NIST.FIPS.186-4.
    Comments received in response to this notice will be published 
electronically at http://csrc.nist.gov/, so commenters should not 
include information they do not wish to be posted (e.g., personal or 
confidential business information).

FOR FURTHER INFORMATION CONTACT: Dr. Lily Chen, Computer Security 
Division, National Institute of Standards and Technology, 100 Bureau 
Drive, Mail Stop 8930, Gaithersburg, MD 20899-8930, email: 
Lily.Chen@nist.gov, phone: (301) 975-6974.

SUPPLEMENTARY INFORMATION: FIPS 186 was initially developed by NIST in 
collaboration with the National Security Agency (NSA), using the 
Digital Signature Algorithm (DSA). Later versions of the standard 
approved the use of the Elliptic Curve Digital Signature Algorithm 
(ECDSA) and the Rivest-Shamir-Adleman (RSA) algorithm. American 
Standards Committee (ASC) X9 developed standards specifying the use of 
both ECDSA and RSA, including methods for generating key pairs, which 
were used as the basis for the later versions of FIPS 186.
    The ECDSA was included by reference in FIPS 186-2, the second 
revision to FIPS 186, which was announced in the Federal Register (65 
FR 7507) and became effective on February 15, 2000. The FIPS was 
revised in order to align the standard with new digital signature 
algorithms included in ASC X9 standards. To facilitate testing and 
interoperability, NIST needed to specify elliptic curves that could be 
used with ECDSA. Working in collaboration with the NSA, NIST included 
three sets of recommended elliptic curves in FIPS 186-2 that were 
generated using the algorithms in the ANS X9.62 standard and Institute 
of Electrical and Electronics Engineers (IEEE) P1363 standards. The 
provenance of the curves was not fully specified, leading to recent 
public concerns that there could be an unknown weakness in these 
curves. NIST is not aware of any vulnerability in these curves when 
they are implemented correctly and used as described in NIST standards 
and guidelines.
    In the fifteen years since FIPS 186-2 was published, elliptic curve 
cryptography (ECC) has seen slow adoption outside certain communities. 
Past discussions on this topic have cited several possible reasons for 
this, including interoperability issues, performance characteristics, 
and concerns over intellectual property.
    In addition, advances in the understanding of elliptic curves 
within the cryptographic community have led to the development of new 
elliptic curves and algorithms whose designers claim to offer better 
performance and are easier to implement in a secure manner. Some of 
these curves are under consideration in voluntary, consensus-based 
Standards Developing Organizations.
    In 2014, NIST's primary external advisory board, the Visiting 
Committee on Advanced Technology (VCAT), conducted a review of NIST's 
cryptographic standards program. As part of their review, the VCAT 
recommended that NIST ``generate a new set of elliptic curves for use 
with ECDSA in FIPS 186.''
    In June 2015, NIST hosted the technical workshop on Elliptic Curve 
Cryptography Standards to discuss possible approaches to promote the 
adoption of secure, interoperable and efficient elliptic curve 
mechanisms. Workshop participants expressed significant interest in the 
development, standardization and adoption of new elliptic curves. As a 
result of this input, NIST is considering the addition of new elliptic 
curves to the current set of recommended curves in FIPS 186-4. Comments 
received in response to this solicitation will be used to identify the 
needs, processes and goals for possible future standards activities.

Request for Comments

    NIST requests comments on the following questions regarding the 
elliptic curves recommended in FIPS 186-4, but comments on other areas 
of the FIPS will also be considered. The responses to this solicitation 
will be used to plan possible improvements to the FIPS, including the 
set of algorithms and elliptic curves specified in the FIPS.

1. Digital Signature Schemes

    a. Do the digital signature schemes and key sizes specified in FIPS 
186-4 satisfy the security requirements of applications used by 
industry?
    b. Are there other digital signature schemes that should be 
considered for inclusion in a future revision to FIPS 186? What are the 
advantages of these schemes over the existing schemes in FIPS 186?

2. Security of Elliptic Curves

    a. Do the NIST-recommended curves satisfy the security requirements 
of applications used by industry?
    b. Are there any attacks of cryptographic significance on Elliptic 
Curve Cryptography that apply to the NIST-recommended curves or other 
widely used curves?

3. Elliptic Curve Specifications and Criteria

    a. Is there a need for new elliptic curves to be considered for 
standardization?
    b. If there is a need, what criteria should NIST use to evaluate 
any curves to be considered for inclusion?
    c. Do you anticipate a need to create, standardize or approve new 
elliptic curves on an ongoing basis?

4. Adoption

    a. Which of the approved digital signature schemes and NIST-
recommended curves have been used in practice?
    b. Which elliptic curves are accepted for use in international 
markets?

5. Interoperability

    a. If new curves were to be standardized, what would be the impact 
of changing existing implementations to allow for the new curves?
    b. What is the impact of having several standardized curves on 
interoperability?
    c. What are the advantages or disadvantages of allowing users or 
applications to generate their own elliptic curves, instead of using 
standardized curves?

6. Performance

    a. Do the performance characteristics of existing implementations 
of the digital signatures schemes approved in FIPS 186-4 meet the 
requirements of applications used by industry?

7. Intellectual Property

    a. What are the desired intellectual property requirements for any 
new

[[Page 63541]]

curves or schemes that could potentially be included in the Standard?
    b. What impact has intellectual property concerns had on the 
adoption of elliptic curve cryptography?

    Authority:  In accordance with the Information Technology 
Management Reform Act of 1996 (Pub. L. 104-106) and the Federal 
Information Security Management Act of 2002 (FISMA) (Pub. L. 107-
347), the Secretary of Commerce is authorized to approve FIPS. NIST 
activities to develop computer security standards to protect federal 
sensitive (unclassified) information systems are undertaken pursuant 
to specific responsibilities assigned to NIST by Section 20 of the 
National Institute of Standards and Technology Act (15 U.S.C. 278g-
3), as amended.

Richard Cavanagh,
Acting Associate Director for Laboratory Programs.
[FR Doc. 2015-26539 Filed 10-19-15; 8:45 am]
 BILLING CODE 3510-13-P