Based on NSA/IAD guidance on Commercial National Security Algorithm Suite and Quantum Computing from January 2016, the inclusion of P-256 should no longer be mandatory in the MDM PP. This Technical Decision is moving P-256 to an optional selection.

Under FCS_CKM.1.1, the second bullet for ECC schemes is being revised to read:

FCS_CKM.1.1 Refinement: The [selection: TSF, TOE platform] shall generate asymmetric cryptographic keys in accordance with a specified cryptographic key generation algorithm [selection:

• RSA schemes using cryptographic key sizes of 2048-bit or greater that meet the following: [selection:
  • FIPS PUB 186-4, “Digital Signature Standard (DSS)”, Appendix B.3;
  • ANSI X9.31-1998, Section 4.1];
• ECC schemes using “NIST curves” P-384 and [selection: P-256, P-521, no other curves] that meet the following: FIPS PUB 186-4, “Digital Signature Standard (DSS)”, Appendix B.4;
• FFC schemes using cryptographic key sizes of 2048-bit or greater that meet the following: FIPS PUB 186-4, “Digital Signature Standard (DSS)”, Appendix B.1

].

Under FCS_COP.1.1(3), the second bullet for ECDSA schemes is being revised to read:

FCS_COP.1.1(3) Refinement: The [selection: TSF, TOE platform] shall perform cryptographic signature services (generation and verification) in accordance with a specified cryptographic algorithm [selection:

• RSA schemes using cryptographic key sizes of 2048-bit or greater that meet the following: FIPS PUB 186-4, “Digital Signature Standard (DSS)”, Section 4;
• ECDSA schemes using “NIST curves” P-384 and [selection: P-256, P-521, no other curves] that meet the following: FIPS PUB 186-4, “Digital Signature Standard (DSS)”, Section 5;

].

P-256 is moving to an optional selection based on new IA guidance.