Misplaced Pages

#725274

57-573: ETM may refer to: Encrypt-then-MAC Energy and Technology Museum , in Vilnius, Lithuania Entercom , an American broadcasting company Estuarine turbidity maximum European Travel Monitor Ramon International Airport , in Israel See also [ edit ] ETM+ , an instrument on the Landsat 7 satellite Topics referred to by

114-526: A metrology agency, the Bureau of Standards was directed by Herbert Hoover to set up divisions to develop commercial standards for materials and products. Some of these standards were for products intended for government use, but product standards also affected private-sector consumption. Quality standards were developed for products including some types of clothing, automobile brake systems and headlamps, antifreeze , and electrical safety. During World War I ,

171-476: A neutron science user facility: the NIST Center for Neutron Research (NCNR). The NCNR provides scientists access to a variety of neutron scattering instruments, which they use in many research fields (materials science, fuel cells, biotechnology, etc.). The SURF III Synchrotron Ultraviolet Radiation Facility is a source of synchrotron radiation , in continuous operation since 1961. SURF III now serves as

228-582: A NIST team as part of a DARPA competition. In September 2013, both The Guardian and The New York Times reported that NIST allowed the National Security Agency (NSA) to insert a cryptographically secure pseudorandom number generator called Dual EC DRBG into NIST standard SP 800-90 that had a kleptographic backdoor that the NSA can use to covertly predict the future outputs of this pseudorandom number generator thereby allowing

285-694: A combination of vacuum tubes and solid-state diode logic. About the same time the Standards Western Automatic Computer , was built at the Los Angeles office of the NBS by Harry Huskey and used for research there. A mobile version, DYSEAC , was built for the Signal Corps in 1954. Due to a changing mission, the "National Bureau of Standards" became the "National Institute of Standards and Technology" in 1988. Following

342-488: A draft of the CSF 2.0 for public comment through November 4, 2023. NIST decided to update the framework to make it more applicable to small and medium size enterprises that use the framework, as well as to accommodate the constantly changing nature of cybersecurity. In August 2024, NIST released a final set of encryption tools designed to withstand the attack of a quantum computer. These post-quantum encryption standards secure

399-519: A message and subsequently applying a MAC to the ciphertext (the Encrypt-then-MAC approach) implies security against an adaptive chosen ciphertext attack , provided that both functions meet minimum required properties. Katz and Yung investigated the notion under the name "unforgeable encryption" and proved it implies security against chosen ciphertext attacks. In 2013, the CAESAR competition

456-474: A poor protocol design or implementation turning Alice's side into an oracle . Naturally, this attack cannot be mounted at all when the keys are generated randomly. Key commitment was originally studied in the 2010s by Abdalla et al. and Farshim et al. under the name "robust encryption". To mitigate the attack described above without removing the "oracle", a key-committing AEAD that does not allow this type of crafted messages to exist can be used. AEGIS

513-539: A program to provide metrology services for United States scientific and commercial users. A laboratory site was constructed in Washington, DC , and instruments were acquired from the national physical laboratories of Europe. In addition to weights and measures, the Bureau developed instruments for electrical units and for measurement of light. In 1905 a meeting was called that would be the first "National Conference on Weights and Measures". Initially conceived as purely

570-419: A second (wrong) key K M will be incorrect, the authentication tag would still match. Since crafting a message with such property requires Mallory to already possess both K A and K M , the issue might appear to be one of a purely academic interest. However, under special circumstances, practical attacks can be mounted against vulnerable implementations. For example, if an identity authentication protocol

627-644: A user-accessible cleanroom nanomanufacturing facility. This "NanoFab" is equipped with tools for lithographic patterning and imaging (e.g., electron microscopes and atomic force microscopes ). NIST has seven standing committees: As part of its mission, NIST supplies industry, academia, government, and other users with over 1,300 Standard Reference Materials (SRMs). These artifacts are certified as having specific characteristics or component content, used as calibration standards for measuring equipment and procedures, quality control benchmarks for industrial processes, and experimental control samples. NIST publishes

SECTION 10

#1732790901726

684-548: A wide range of electronic information, from confidential email messages to e-commerce transactions that propel the modern economy. Four scientific researchers at NIST have been awarded Nobel Prizes for work in physics : William Daniel Phillips in 1997, Eric Allin Cornell in 2001, John Lewis Hall in 2005 and David Jeffrey Wineland in 2012, which is the largest number for any US government laboratory not accounting for ubiquitous government contracts to state institutions and

741-562: Is an example fast (if the AES instruction set is present), key-committing AEAD. It is possible to add key-commitment to an existing AEAD scheme. The plaintext is first encrypted, then a MAC is produced based on the resulting ciphertext. The ciphertext and its MAC are sent together. ETM is the standard method according to ISO/IEC 19772:2009. It is the only method which can reach the highest definition of security in AE, but this can only be achieved when

798-483: Is based on successful decryption of a message that uses a password-based key, Mallory's ability to craft a single message that would be successfully decrypted using 1000 different keys associated with weak , and thus known to her, potential passwords, can speed up her search for passwords by a factor of almost 1000. For this dictionary attack to succeed, Mallory also needs an ability to distinguish successful decryption by Alice from an unsuccessful one, due, for example, to

855-450: Is different from Wikidata All article disambiguation pages All disambiguation pages Encrypt-then-MAC Many (but not all) AE schemes allow the message to contain "associated data" (AD) which is not made confidential, but its integrity is protected (i.e., it is readable, but tampering with it will be detected). A typical example is the header of a network packet that contains its destination address. To properly route

912-649: Is now the Handbook 44 since 1918 and began publication under the current name in 1949. The 2010 edition conforms to the concept of the primary use of the SI (metric) measurements recommended by the Omnibus Foreign Trade and Competitiveness Act of 1988 . NIST is developing government-wide identity document standards for federal employees and contractors to prevent unauthorized persons from gaining access to government buildings and computer systems. In 2002,

969-575: Is providing practical guidance and tools to better prepare facility owners, contractors, architects, engineers, emergency responders, and regulatory authorities to respond to future disasters. The investigation portion of the response plan was completed with the release of the final report on 7 World Trade Center on November 20, 2008. The final report on the WTC Towers—including 30 recommendations for improving building and occupant safety—was released on October 26, 2005. NIST works in conjunction with

1026-424: Is unnecessary, but authenticity is desired. The need for authenticated encryption emerged from the observation that securely combining separate confidentiality and authentication block cipher operation modes could be error prone and difficult. This was confirmed by a number of practical attacks introduced into production protocols and applications by incorrect implementation, or lack of authentication. Around

1083-575: The Biden administration began plans to create a U.S. AI Safety Institute within NIST to coordinate AI safety matters. According to The Washington Post , NIST is considered "notoriously underfunded and understaffed", which could present an obstacle to these efforts. NIST, known between 1901 and 1988 as the National Bureau of Standards (NBS), is a measurement standards laboratory , also known as

1140-525: The Constitution of the United States , ratified in 1789, granted these powers to the new Congress: "The Congress shall have power ... To coin money, regulate the value thereof, and of foreign coin, and fix the standard of weights and measures". In January 1790, President George Washington , in his first annual message to Congress , said, "Uniformity in the currency, weights, and measures of

1197-752: The Handbook 44 each year after the annual meeting of the National Conference on Weights and Measures (NCWM). Each edition is developed through cooperation of the Committee on Specifications and Tolerances of the NCWM and the Weights and Measures Division (WMD) of NIST. The purpose of the book is a partial fulfillment of the statutory responsibility for "cooperation with the states in securing uniformity of weights and measures laws and methods of inspection". NIST has been publishing various forms of what

SECTION 20

#1732790901726

1254-568: The National Construction Safety Team Act mandated NIST to conduct an investigation into the collapse of the World Trade Center buildings 1 and 2 and the 47-story 7 World Trade Center. The "World Trade Center Collapse Investigation", directed by lead investigator Shyam Sunder, covered three aspects, including a technical building and fire safety investigation to study the factors contributing to

1311-559: The National Medal of Science has been awarded to NIST researchers Cahn (1998) and Wineland (2007). Other notable people who have worked at NBS or NIST include: Since 1989, the director of NIST has been a Presidential appointee and is confirmed by the United States Senate , and since that year the average tenure of NIST directors has fallen from 11 years to 2 years in duration. Since the 2011 reorganization of NIST,

1368-737: The September 11, 2001 attacks, under the National Construction Safety Team Act (NCST), NIST conducted the official investigation into the collapse of the World Trade Center buildings. Following the 2021 Surfside condominium building collapse , NIST sent engineers to the site to investigate the cause of the collapse. In 2019, NIST launched a program named NIST on a Chip to decrease the size of instruments from lab machines to chip size. Applications include aircraft testing, communication with satellites for navigation purposes, and temperature and pressure. In 2023,

1425-870: The Technical Guidelines Development Committee of the Election Assistance Commission to develop the Voluntary Voting System Guidelines for voting machines and other election technology. In February 2014 NIST published the NIST Cybersecurity Framework that serves as voluntary guidance for organizations to manage and reduce cybersecurity risk. It was later amended and Version 1.1 was published in April 2018. Executive Order 13800, Strengthening

1482-842: The Treaty of the Meter , which established the International Bureau of Weights and Measures under the control of an international committee elected by the General Conference on Weights and Measures . NIST is headquartered in Gaithersburg, Maryland , and operates a facility in Boulder, Colorado , which was dedicated by President Eisenhower in 1954. NIST's activities are organized into laboratory programs and extramural programs. Effective October 1, 2010, NIST

1539-700: The proximity fuze and the standardized airframe used originally for Project Pigeon , and shortly afterwards the autonomously radar-guided Bat anti-ship guided bomb and the Kingfisher family of torpedo-carrying missiles. In 1948, financed by the United States Air Force, the Bureau began design and construction of SEAC , the Standards Eastern Automatic Computer. The computer went into operation in May 1950 using

1596-406: The Bureau worked on multiple problems related to war production, even operating its own facility to produce optical glass when European supplies were cut off. Between the wars, Harry Diamond of the Bureau developed a blind approach radio aircraft landing system. During World War II, military research and development was carried out, including development of radio propagation forecast methods,

1653-729: The Cybersecurity of Federal Networks and Critical Infrastructure , made the Framework mandatory for U.S. federal government agencies. An extension to the NIST Cybersecurity Framework is the Cybersecurity Maturity Model (CMMC) which was introduced in 2019 (though the origin of CMMC began with Executive Order 13556). It emphasizes the importance of implementing Zero-trust architecture (ZTA) which focuses on protecting resources over

1710-703: The E&;M approach has not been proved to be strongly unforgeable in itself, it is possible to apply some minor modifications to SSH to make it strongly unforgeable despite the approach. A MAC is produced based on the plaintext, then the plaintext and MAC are together encrypted to produce a ciphertext based on both. The ciphertext (containing an encrypted MAC) is sent. Until TLS 1.2, all available SSL/TLS cipher suites were MtE. MtE has not been proven to be strongly unforgeable in itself. The SSL/TLS implementation has been proven to be strongly unforgeable by Krawczyk who showed that SSL/TLS was, in fact, secure because of

1767-702: The EC-DRBG algorithm from the NIST SP 800-90 standard. In addition to these journals, NIST (and the National Bureau of Standards before it) has a robust technical reports publishing arm. NIST technical reports are published in several dozen series, which cover a wide range of topics, from computer technology to construction to aspects of standardization including weights, measures and reference data. In addition to technical reports, NIST scientists publish many journal and conference papers each year; an database of these, along with more recent technical reports, can be found on

ETM - Misplaced Pages Continue

1824-478: The MAC used is "strongly unforgeable". IPSec adopted EtM in 2005. In November 2014, TLS and DTLS received extensions for EtM with RFC   7366 . Various EtM ciphersuites exist for SSHv2 as well (e.g., hmac-sha1-etm@openssh.com ). A MAC is produced based on the plaintext, and the plaintext is encrypted without the MAC. The plaintext's MAC and the ciphertext are sent together. Used in, e.g., SSH . Even though

1881-536: The NIST cryptography process because of its recognized expertise. NIST is also required by statute to consult with the NSA." Recognizing the concerns expressed, the agency reopened the public comment period for the SP800-90 publications, promising that "if vulnerabilities are found in these or any other NIST standards, we will work with the cryptographic community to address them as quickly as possible". Due to public concern of this cryptovirology attack, NIST rescinded

1938-676: The National Metrological Institute (NMI), which is a non-regulatory agency of the United States Department of Commerce . The institute's official mission is to: Promote U.S. innovation and industrial competitiveness by advancing measurement science , standards , and technology in ways that enhance economic security and improve our quality of life . NIST had an operating budget for fiscal year 2007 (October 1, 2006 – September 30, 2007) of about $ 843.3 million. NIST's 2009 budget

1995-511: The US national standard for source-based radiometry throughout the generalized optical spectrum. All NASA -borne, extreme-ultraviolet observation instruments have been calibrated at SURF since the 1970s, and SURF is used for the measurement and characterization of systems for extreme ultraviolet lithography . The Center for Nanoscale Science and Technology (CNST) performs research in nanotechnology , both through internal research efforts and by running

2052-487: The United States is an object of great importance, and will, I am persuaded, be duly attended to." On October 25, 1791, Washington again appealed Congress: A uniformity of the weights and measures of the country is among the important objects submitted to you by the Constitution and if it can be derived from a standard at once invariable and universal, must be no less honorable to the public council than conducive to

2109-564: The agency was named the National Bureau of Standards . The Articles of Confederation , ratified by the colonies in 1781, provided: The United States in Congress assembled shall also have the sole and exclusive right and power of regulating the alloy and value of coin struck by their own authority, or by that of the respective states—fixing the standards of weights and measures throughout the United States. Article 1, section 8, of

2166-668: The block size of the encryption function. Padding errors often result in the detectable errors on the recipient's side, which in turn lead to padding oracle attacks, such as Lucky Thirteen . NIST The National Institute of Standards and Technology ( NIST ) is an agency of the United States Department of Commerce whose mission is to promote American innovation and industrial competitiveness. NIST's activities are organized into physical science laboratory programs that include nanoscale science and technology , engineering , information technology , neutron research, material measurement, and physical measurement. From 1901 to 1988,

2223-522: The country. NIST publishes the Handbook 44 that provides the "Specifications, tolerances, and other technical requirements for weighing and measuring devices". The Congress of 1866 made use of the metric system in commerce a legally protected activity through the passage of Metric Act of 1866 . On May 20, 1875, 17 out of 20 countries signed a document known as the Metric Convention or

2280-493: The director also holds the title of Under Secretary of Commerce for Standards and Technology. Fifteen individuals have officially held the position (in addition to four acting directors who have served on a temporary basis). NIST holds patents on behalf of the Federal government of the United States , with at least one of them being custodial to protect public domain use, such as one for a Chip-scale atomic clock , developed by

2337-500: The encoding used alongside the MtE mechanism. However, Krawczyk's proof contains flawed assumptions about the randomness of the initialization vector (IV). The 2011 BEAST attack exploited the non-random chained IV and broke all CBC algorithms in TLS 1.0 and under. In addition, deeper analysis of SSL/TLS modeled the protection as MAC-then-pad-then-encrypt, i.e. the plaintext is first padded to

ETM - Misplaced Pages Continue

2394-512: The integrity of both the associated data and the confidential information in a message. AD is useful, for example, in network packets where the header should be visible for routing , but the payload needs to be confidential, and both need integrity and authenticity . The notion of AEAD was formalized by Rogaway (2002). AE was originally designed primarily to provide the ciphertext integrity: successful validation of an authentication tag by Alice using her symmetric key K A indicates that

2451-416: The message was not tampered with by an adversary Mallory that does not possess the K A . The AE schemes usually do not provide the key commitment , a guarantee that the decryption would fail for any other key. As of 2021, most existing AE schemes (including the very popular GCM) allow some messages to be decoded without an error using more than just the (correct) K A ; while their plaintext decoded using

2508-409: The national physical laboratory for the United States. Southard had previously sponsored a bill for metric conversion of the United States. President Theodore Roosevelt appointed Samuel W. Stratton as the first director. The budget for the first year of operation was $ 40,000. The Bureau took custody of the copies of the kilogram and meter bars that were the standards for US measures, and set up

2565-429: The network perimeter. ZTA utilizes zero trust principles which include "never trust, always verify", "assume breach" and "least privileged access" to safeguard users, assets, and resources. Since ZTA holds no implicit trust to users within the network perimeter, authentication and authorization are performed at every stage of a digital transaction. This reduces the risk of unauthorized access to resources. NIST released

2622-487: The packet, all intermediate nodes in the message path need to know the destination, but for security reasons they cannot possess the secret key. Schemes that allow associated data provide authenticated encryption with associated data , or AEAD . A typical programming interface for an AE implementation provides the following functions: The header part is intended to provide authenticity and integrity protection for networking or storage metadata for which confidentiality

2679-547: The private sector. All four were recognized for their work related to laser cooling of atoms, which is directly related to the development and advancement of the atomic clock. In 2011, Dan Shechtman was awarded the Nobel Prize in chemistry for his work on quasicrystals in the Metallurgy Division from 1982 to 1984. In addition, John Werner Cahn was awarded the 2011 Kyoto Prize for Materials Science, and

2736-482: The probable cause of the collapses of the WTC Towers (WTC 1 and 2) and WTC 7. NIST also established a research and development program to provide the technical basis for improved building and fire codes, standards, and practices, and a dissemination and technical assistance program to engage leaders of the construction and building community in implementing proposed changes to practices, standards, and codes. NIST also

2793-481: The public convenience. In 1821, President John Quincy Adams declared, "Weights and measures may be ranked among the necessities of life to every individual of human society.". Nevertheless, it was not until 1838 that the United States government adopted a uniform set of standards. From 1830 until 1901, the role of overseeing weights and measures was carried out by the Office of Standard Weights and Measures, which

2850-402: The same term [REDACTED] This disambiguation page lists articles associated with the title ETM . If an internal link led you here, you may wish to change the link to point directly to the intended article. Retrieved from " https://en.wikipedia.org/w/index.php?title=ETM&oldid=928030348 " Category : Disambiguation pages Hidden categories: Short description

2907-431: The standard by NSA). NIST responded to the allegations, stating that "NIST works to publish the strongest cryptographic standards possible" and that it uses "a transparent, public process to rigorously vet our recommended standards". The agency stated that "there has been some confusion about the standards development process and the role of different organizations in it...The National Security Agency (NSA) participates in

SECTION 50

#1732790901726

2964-415: The surreptitious decryption of data. Both papers report that the NSA worked covertly to get its own version of SP 800-90 approved for worldwide use in 2006. The whistle-blowing document states that "eventually, NSA became the sole editor". The reports confirm suspicions and technical grounds publicly raised by cryptographers in 2007 that the EC-DRBG could contain a kleptographic backdoor (perhaps placed in

3021-985: The year 2000, a number of efforts evolved around the notion of standardizing modes that ensured correct implementation. In particular, strong interest in possibly secure modes was sparked by the publication of Charanjit Jutla 's integrity-aware CBC and integrity-aware parallelizable , IAPM, modes in 2000 (see OCB and chronology ). Six different authenticated encryption modes (namely offset codebook mode 2.0 , OCB   2.0; Key Wrap ; counter with CBC-MAC , CCM; encrypt then authenticate then translate , EAX; encrypt-then-MAC , EtM; and Galois/counter mode , GCM) have been standardized in ISO/IEC 19772:2009. More authenticated encryption methods were developed in response to NIST solicitation. Sponge functions can be used in duplex mode to provide authenticated encryption. Bellare and Namprempre (2000) analyzed three compositions of encryption and MAC primitives, and demonstrated that encrypting

3078-523: Was $ 992 million, and it also received $ 610 million as part of the American Recovery and Reinvestment Act . NIST employs about 2,900 scientists, engineers, technicians, and support and administrative personnel. About 1,800 NIST associates (guest researchers and engineers from American companies and foreign countries) complement the staff. In addition, NIST partners with 1,400 manufacturing specialists and staff at nearly 350 affiliated centers around

3135-464: Was announced to encourage design of authenticated encryption modes. In 2015, ChaCha20-Poly1305 is added as an alternative AE construction to GCM in IETF protocols. Authenticated encryption with associated data (AEAD) is a variant of AE that allows the message to include "associated data" (AD, additional non-confidential information, a.k.a. "additional authenticated data", AAD). A recipient can check

3192-719: Was part of the Survey of the Coast—renamed the United States Coast Survey in 1836 and the United States Coast and Geodetic Survey in 1878—in the United States Department of the Treasury . In 1901, in response to a bill proposed by Congressman James H. Southard (R, Ohio), the National Bureau of Standards was founded with the mandate to provide standard weights and measures, and to serve as

3249-619: Was realigned by reducing the number of NIST laboratory units from ten to six. NIST Laboratories include: Extramural programs include: NIST's Boulder laboratories are best known for NIST‑F1 , which houses an atomic clock . NIST‑F1 serves as the source of the nation's official time. From its measurement of the natural resonance frequency of cesium —which defines the second —NIST broadcasts time signals via longwave radio station WWVB near Fort Collins , Colorado, and shortwave radio stations WWV and WWVH , located near Fort Collins and Kekaha, Hawaii , respectively. NIST also operates

#725274