Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
CRYPTREC
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
{{Short description|Japanese cryptography research project}} '''CRYPTREC''' is the '''Cryptography Research and Evaluation Committees''' set up by the [[Japanese Government]] to evaluate and recommend [[cryptographic]] techniques for government and industrial use. It is comparable in many respects to the [[European Union]]'s [[NESSIE]] project and to the [[Advanced Encryption Standard process]] run by [[National Institute of Standards and Technology]] in the [[United States|U.S.]] == Comparison with NESSIE == There is some overlap, and some conflict, between the NESSIE selections and the CRYPTREC draft recommendations. Both efforts include some of the best cryptographers in the world{{Citation needed|date=June 2011}} therefore conflicts in their selections and recommendations should be examined with care. For instance, CRYPTREC recommends several 64 bit block ciphers while NESSIE selected none, but CRYPTREC was obliged by its terms of reference to take into account existing standards and practices, while NESSIE was not. Similar differences in terms of reference account for CRYPTREC recommending at least one [[stream cipher]], [[RC4]], while the NESSIE report specifically said that it was ''notable'' that they had not selected any of those considered. RC4 is widely used in the [[Transport Layer Security|SSL/TLS]] protocols; nevertheless, CRYPTREC recommended that it only be used with 128-bit keys. Essentially the same consideration led to CRYPTREC's inclusion of 160-bit message digest algorithms, despite their suggestion that they be avoided in new system designs. Also, CRYPTREC was unusually careful to examine variants and modifications of the techniques, or at least to discuss their care in doing so; this resulted in particularly detailed recommendations regarding them. == Background and sponsors == CRYPTREC includes members from Japanese [[academia]], [[Private industry|industry]], and [[government]]. It was started in May 2000 by combining efforts from several agencies who were investigating methods and techniques for implementing 'e-Government' in Japan. Presently, it is sponsored by *the Ministry of Economy Trade and Industry, *the Ministry of Public Management, Home Affairs and Post and Telecommunications, *the Telecommunications Advancement Organization, and *the Information-Technology Promotion Agency. == Responsibilities == It is also the organization that provides technical evaluation and recommendations concerning regulations that implement Japanese laws. Examples include the Electronic Signatures and Certification Services (Law 102 of FY2000, taking effect as from April 2001), the Basic Law on the Formulation of an Advanced Information and Telecommunications Network Society of 2000 (Law 144 of FY2000), and the Public Individual Certification Law of December 2002. Furthermore, CRYPTEC has responsibilities with regard to the Japanese contribution to the [[International Organization for Standardization|ISO]]/[[International Electrotechnical Commission|IEC]] JTC 1/SC27 standardization effort. == Selection == In the first release in 2003,<ref>{{Cite web | url=https://www.cryptrec.go.jp/english/images/cryptrec_01en.pdf | title=e-Government recommended ciphers list | date=2003-02-20 | publisher=CRYPTREC | access-date=2018-08-16 | archive-url=https://web.archive.org/web/20180417202123/http://www.cryptrec.go.jp/english/images/cryptrec_01en.pdf | archive-date=2018-04-17 | url-status=dead }}</ref> many Japanese ciphers were selected for the "e-Government Recommended Ciphers List": [[CIPHERUNICORN-E]] ([[NEC]]), [[Hierocrypt|Hierocrypt-L1]] ([[Toshiba]]), and [[MISTY1]] ([[Mitsubishi Electric]]) as 64 bit block ciphers, [[Camellia (cipher)|Camellia]] ([[Nippon Telegraph and Telephone]], [[Mitsubishi Electric]]), [[CIPHERUNICORN-A]] (NEC), [[Hierocrypt|Hierocrypt-3]] (Toshiba), and [[SC2000]] ([[Fujitsu]]) as 128 bit block ciphers, and finally [[MUGI]] and [[MULTI-S01]] ([[Hitachi]]) as stream ciphers. In the revised release of 2013,<ref>{{Cite web | url=https://www.cryptrec.go.jp/english/method.html | title=Specifications of e-Government Recommended Ciphers | date=2018-07-02 | publisher=CRYPTREC | access-date=2018-08-16}}</ref> the list was divided into three: "e-Government Recommended Ciphers List", "Candidate Recommended Ciphers List", and "Monitored Ciphers List". Most of the Japanese ciphers listed in the previous list (except for Camellia) have moved from the "Recommended Ciphers List" to the "Candidate Recommended Ciphers List". There were several new proposals, such as [[CLEFIA]] ([[Sony]]) as a 128 bit block cipher as well as [[KCipher-2]] ([[KDDI]]) and [[Enocoro-128v2]] (Hitachi) as stream ciphers. However, only KCipher-2 has been listed on the "e-Government Recommended Ciphers List". The reason why most Japanese ciphers have not been selected as "Recommended Ciphers" is not that these ciphers are necessarily unsafe, but that these ciphers are not widely used in commercial products, open-source projects, governmental systems, or international standards. There is the possibility that ciphers listed on "Candidate Recommended Ciphers List" will be moved to the "e-Government Recommended Ciphers List" when they are utilized more widely. In addition, 128 bit [[RC4]] and [[SHA-1]] are listed on "Monitored Ciphers List". These are unsafe and only permitted to remain compatible with old systems. After the revision in 2013, there are several updates such as addition of [[ChaCha20]]-[[Poly1305]], [[EdDSA]] and [[SHA-3]], move of [[Triple DES]] to Monitored list, and deletion of [[RC4]], etc. == CRYPTREC Ciphers List == {{asof|2023|03}} === e-Government Recommended Ciphers List === *Public key ciphers **Signature ***[[Digital Signature Algorithm|DSA]] ***[[Elliptic Curve DSA|ECDSA]] ***[[EdDSA]] ***[[PKCS 1|RSA-PSS]] ***[[PKCS 1|RSASSA-PKCS1-v1_5]] **Confidentiality ***[[PKCS 1|RSA-OAEP]] **Key exchange ***[[Diffie–Hellman key exchange|DH]] ***[[Elliptic curve Diffie–Hellman|ECDH]] *Symmetric key ciphers **64-bit block ciphers ***N/A **128-bit block ciphers ***[[Advanced Encryption Standard|AES]] ***[[Camellia (cipher)|Camellia]] **Stream ciphers ***[[KCipher-2]] *Hash functions **[[SHA-2|SHA-256]] **SHA-384 **SHA-512 **SHA-512/256 **[[SHA-3|SHA3-256]] **SHA3-384 **SHA3-512 **SHAKE128 **SHAKE256 *Modes of operation **Encryption modes ***[[Block cipher mode of operation#Cipher-block chaining (CBC)|CBC]] ***[[Block cipher mode of operation#Cipher feedback (CFB)|CFB]] ***[[Block cipher mode of operation#Counter (CTR)|CTR]] ***[[Block cipher mode of operation#Output feedback (OFB)|OFB]] ***[[XTS mode|XTS]] **Authenticated encryption modes ***[[CCM mode|CCM]] ***[[Galois/Counter Mode|GCM]] *Message authentication codes **[[CMAC]] **[[Hash-based message authentication code|HMAC]] *Authenticated encryption **[[ChaCha20]]-[[Poly1305]] *Entity authentication **ISO/IEC 9798-2 **ISO/IEC 9798-3 **ISO/IEC 9798-4 === Candidate Recommended Ciphers List === *Public key ciphers **Signature ***N/A **Confidentiality ***N/A **Key exchange ***[[PSEC-KEM]] *Symmetric key ciphers **64-bit block ciphers ***[[CIPHERUNICORN-E]] ***[[Hierocrypt|Hierocrypt-L1]] ***[[MISTY1]] **128-bit block ciphers ***[[CIPHERUNICORN-A]] ***[[CLEFIA]] ***[[Hierocrypt|Hierocrypt-3]] **Stream ciphers ***[[Enocoro-128v2]] ***[[MUGI]] ***[[MULTI-S01]] *Hash functions **N/A *Modes of operation **Encryption modes ***N/A **Authenticated encryption modes ***N/A *Message authentication codes **[[PC-MAC-AES]] *Authenticated encryption **N/A *Entity authentication **N/A === Monitored Ciphers List === *Public key ciphers **Signature ***N/A **Confidentiality ***[[PKCS 1|RSAES-PKCS1-v1_5]] **Key exchange ***N/A *Symmetric key ciphers **64-bit block ciphers ***[[Triple DES|3-key Triple DES]] **128-bit block ciphers ***N/A **Stream ciphers ***N/A *Hash functions **[[RIPEMD-160]] **[[SHA-1]] *Modes of operation **Encryption modes ***N/A **Authenticated encryption modes ***N/A *Message authentication codes **[[CBC-MAC]] *Authenticated encryption **N/A *Entity authentication **N/A == References == {{reflist}} == External links == * {{Official website|https://www.cryptrec.go.jp/english/}} * [https://www.cryptrec.go.jp/list/cryptrec-ls-0001-2012r7.pdf The list of ciphers that should be referred to in the procurement for the e-Government system (CRYPTREC Ciphers List)] (in Japanese) {{Cryptography navbox | public-key | block | hash}} [[Category:Cryptography standards]] [[Category:Government research]] [[Category:Standards of Japan]]
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)
Pages transcluded onto the current version of this page
(
help
)
:
Template:Asof
(
edit
)
Template:Citation needed
(
edit
)
Template:Cite web
(
edit
)
Template:Cryptography navbox
(
edit
)
Template:Official website
(
edit
)
Template:Reflist
(
edit
)
Template:Short description
(
edit
)