Standard Name
NIST SP 800-78-4, Cryptographic Algorithms and Key Sizes for Personal Identity Verification
Industry Standard
Publication Number
SP 800-78-4
Standard Date
Standard Link
Securezoo Overview
The National Institute of Standards and Technology (NIST) announces the final release of Special Publication (SP) 800-78-4, Cryptographic Algorithms and Key Sizes for Personal Identity Verification.

An excerpt of the changes introduced in SP 800-78-4: 
  • Removal of information about algorithms and key sizes that can no longer be used because their "Time Period for Use" is in the past;
  • Addition of algorithm and key size requirements for the optional PIV Secure Messaging key.
  • Addition of requirements for Cryptographic Algorithm Validation Program (CAVP) validation testing.
  • Clarified that RSA public keys may only have a public exponent of 65 537. (Client applications are still encouraged to be able to process RSA public keys that have any public exponent that is an odd positive integer greater than or equal to 65 537 and less than 2256.)