Review - NIST Publishes Cryptographic Module Validation Program Notice

Today the DOC’s National Institute of Standards and Technology (NIST) published a notice in the Federal Register (86 FR48984-48986) for their “National Cybersecurity Center of Excellence (NCCoE) Automation of  the Cryptographic Module Validation Program (CMVP)”. NIST is inviting organizations to provide letters of interest describing products and technical expertise to support and demonstrate security platforms for the CMVP project.

NIST is soliciting letters of interest from entities wishing to enter into a Cooperative Research and Development Agreement (CRADA) to provide products and technical expertise to support and demonstrate security platforms for the Automation of the Cryptographic Module Validation Program (CMVP) project. The process of submitting letters of interest is outlined here. NIST will close the acceptance of letters of interest when sufficient replies have been received. A notice of that closure will be posted on the project website.

Collaborative activities will commence as soon as enough completed and signed letters of interest have been returned to address all the necessary components and capabilities, but no earlier than October 1, 2021.

For more details about the CMVP and what NIST is looking for in this solicitation, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/nist-publishes-cryptographic-module   - subscription required