On 10/24/2013 09:28 AM, Riccardo Bernardini wrote:
does IETF standards really
depend on NIST standard process and development? Is the statement talking
about all IETF security standards?
As I tried to explain in
http://tools.ietf.org/html/draft-tschofenig-perpass-surveillance-00 the
IETF is currently not in the business of developing cryptographic
primitives. This work is done outside the IETF (to a large extend).
Of course, our security protocols have to use cryptographic primitives
and there is the question where do these come from.
It turns out that there are not that many organizations in the world who
have the necessary level of expertise. NIST is one of them.
Ciao
Hannes