Hi Russ
The comment has a statement which I am against;
IETF standards depend on NIST standards and the process by which they are
developed.
The statement contradicts the first, that IETF references also other
government algorithms.
Is this a specific or general dependence? And does IETF standards
really depend on NIST standard process and development? Is the
statement talking about all IETF security standards?
Best regards
Abdussalam
On Wednesday, October 23, 2013, IAB Chair wrote:
Today, the IAB sent comments to the US National Institute for Standards
and Technology (NIST) in the matter of the NIST Special Publication 800-90A
(Recommendation for Random Number Generation Using Deterministic Random Bit
Generators) review proceeding. In the statement, the IAB supports
re-opening of the comment period on NIST SP 800-90A, and the IAB also makes
recommendations relating to the review process for cybersecurity and
cryptographic standards to enhance transparency and openness.
The full statement is available from the IAB website:
http://www.iab.org/wp-content/IAB-uploads/2013/10/IAB-NIST-FINAL.pdf
On behalf of the IAB,
Russ Housley
IAB Chair