NIST Rolls Out Revolutionary Cryptography Standard

The National Institute of Standards and Technology (NIST) has officially launched a groundbreaking lightweight cryptography standard designed to safeguard even the tiniest connected devices from an increasing wave of cyberattacks.

Titled "Ascon-Based Lightweight Cryptography Standards for Constrained Devices" (NIST Special Publication 800-232), this transformative standard provides essential tools for securing data transmitted by the billions of Internet of Things (IoT) devices, RFID tags, and medical implants in use today. These devices often lack the computational power of smartphones or laptops, yet they still require robust protection against threats.

Empowering Industries with Enhanced Security

NIST's computer scientist Kerry McKay, who co-led this innovative project, emphasized its importance: This new standard is a game-changer, making cryptography more accessible in environments where resources are scarce. From smart home gadgets to vehicle toll registers and medical implants, all these devices face the challenge of balancing energy efficiency, speed, and space when implementing cryptography.

Advanced Algorithms for Today’s Tech

The newly established standard leverages algorithms from the Ascon family, which were meticulously selected after a rigorous public review process in 2023. Originally developed in 2014 by experts from Graz University of Technology, Infineon Technologies, and Radboud University, Ascon emerged victorious in the prestigious CAESAR competition in 2019, solidifying its position as a trusted lightweight encryption solution.

Versatile Cryptographic Solutions for Various Use Cases

Offering four distinct Ascon variants, the standard addresses two critical needs: authenticated encryption with associated data (AEAD) and hashing capabilities.

The ASCON-128 AEAD variant is designed for scenarios where a device must secure data and ensure that it remains unaltered. These small devices are often at risk of side-channel attacks—where cybercriminals glean sensitive information by monitoring power consumption or timing. While no algorithm can completely eliminate this risk, ASCON is engineered for easier side-channel resistance compared to older methods.

Meanwhile, ASCON-Hash 256 creates a concise hash that acts as a digital fingerprint for the data, ensuring integrity during software updates and protecting against tampering. It also provides a lightweight alternative to NIST’s SHA-3 family for safeguarding passwords and digital signatures.

Customizable Hash Functions for Maximum Efficiency

The ASCON-XOF 128 and ASCON-CXOF 128 variants introduce flexible hash functions that can be tailored for specific needs, allowing users to adjust hash lengths for optimal time and energy savings. The CXOF variant even permits the addition of custom labels, reducing the potential risk of duplicate hashes—a clever feature to thwart potential attackers.

A Future-Ready Standard that Adapts to Needs

McKay reassured stakeholders that the new standard is not just designed for immediate implementation but is also adaptable for future developments. We've listened to community feedback and aimed to create a standard that’s straightforward to follow, with an eye toward evolving its capabilities in response to ongoing needs, she noted. Future features may include dedicated message authentication codes, with considerations for these enhancements set to begin shortly.