The IT Law Wiki

Security Testing, Validation, and Measurement Group

32,081pages on
this wiki
Add New Page
Add New Page Talk0

Overview Edit

The NIST, Computer Security Division, Security Testing, Validation, and Measurement Group advances information security testing, measurement science, and conformance.

The STVMG supports the testing and validation of cryptographic modules and the cryptographic algorithms specified in NIST standards. These cryptographic modules and algorithms enable products and systems to provide security services, such as confidentiality, integrity authentication, and source authentication. Although cryptography provides security, poor designs or weak algorithms can render a product insecure and place highly sensitive information at risk. When protecting sensitive data, Federal Government agencies require a minimum level of assurance that cryptographic products meet established security requirements and use only tested and validated cryptographic modules and algorithms.

STVMG's testing-focused activities include validating cryptographic algorithm implementations, cryptographic modules, and Security Content Automation Protocol (SCAP)-compliant products; developing test suites and test methods; providing implementation guidance and technical support to industry forums; and conducting education, training, and outreach programs.

Sources Edit

Also on Fandom

Random Wiki