diff mbox series

[v9,10/10] doc: add notes about acvp validation support

Message ID	f07f1d794ae7f108bc162508c7d248cd716ac99f.1653925803.git.gmuthukrishn@marvell.com (mailing list archive)
State	Accepted, archived
Delegated to:	akhil goyal
Headers	From: Gowrishankar Muthukrishnan <gmuthukrishn@marvell.com> To: <dev@dpdk.org> CC: Fan Zhang <roy.fan.zhang@intel.com>, Brian Dooley <brian.dooley@intel.com>, <lylavoie@iol.unh.edu>, Anoob Joseph <anoobj@marvell.com>, Archana Muniganti <marchana@marvell.com>, Jerin Jacob <jerinj@marvell.com>, Gowrishankar Muthukrishnan <gmuthukrishn@marvell.com> Subject: [v9, 10/10] doc: add notes about acvp validation support Date: Mon, 30 May 2022 21:22:44 +0530 Message-ID: <f07f1d794ae7f108bc162508c7d248cd716ac99f.1653925803.git.gmuthukrishn@marvell.com> In-Reply-To: <cover.1653925803.git.gmuthukrishn@marvell.com> References: <cover.1653925803.git.gmuthukrishn@marvell.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain Precedence: list Errors-To: dev-bounces@dpdk.org
Series	Add JSON vector set support to fips validation \| [v9,00/10] Add JSON vector set support to fips validation [v9,01/10] examples/fips_validation: add jansson dependency [v9,02/10] examples/fips_validation: add json info to header [v9,03/10] examples/fips_validation: add json parsing [v9,04/10] examples/fips_validation: allow json file as input [v9,05/10] examples/fips_validation: add json to gcm test [v9,06/10] examples/fips_validation: add json to hmac [v9,07/10] examples/fips_validation: implement json cmac test [v9,08/10] examples/fips_validation: add parsing for cmac [v9,09/10] examples/fips_validation: add parsing for aes_cbc [v9,10/10] doc: add notes about acvp validation support

Checks

Context	Check	Description
ci/checkpatch	success	coding style OK
ci/Intel-compilation	success	Compilation OK
ci/intel-Testing	success	Testing PASS
ci/github-robot: build	success	github build: passed
ci/iol-mellanox-Performance	success	Performance Testing PASS
ci/iol-aarch64-unit-testing	success	Testing PASS
ci/iol-aarch64-compile-testing	success	Testing PASS
ci/iol-x86_64-compile-testing	success	Testing PASS
ci/iol-x86_64-unit-testing	success	Testing PASS
ci/iol-intel-Performance	success	Performance Testing PASS
ci/iol-intel-Functional	success	Functional Testing PASS
ci/iol-abi-testing	success	Testing PASS

Commit Message

Gowrishankar Muthukrishnan May 30, 2022, 3:52 p.m. UTC

  Add notes on algorithms supported for ACVP validation.

Signed-off-by: Gowrishankar Muthukrishnan <gmuthukrishn@marvell.com>
---
 doc/guides/sample_app_ug/fips_validation.rst | 30 +++++++++++++++-----
 1 file changed, 23 insertions(+), 7 deletions(-)

diff mbox series

Patch

diff --git a/doc/guides/sample_app_ug/fips_validation.rst b/doc/guides/sample_app_ug/fips_validation.rst
index 39baea3346..43190bb696 100644
--- a/doc/guides/sample_app_ug/fips_validation.rst
+++ b/doc/guides/sample_app_ug/fips_validation.rst
@@ -12,19 +12,22 @@  developed by the United States federal government for use in computer systems by
 non-military government agencies and government contractors.
 
 This application is used to parse and perform symmetric cryptography
-computation to the NIST Cryptographic Algorithm Validation Program (CAVP) test
-vectors.
+computation to the NIST Cryptographic Algorithm Validation Program (CAVP) and
+Automated Crypto Validation Protocol (ACVP) test vectors.
 
 For an algorithm implementation to be listed on a cryptographic module
 validation certificate as an Approved security function, the algorithm
-implementation must meet all the requirements of FIPS 140-2 and must
-successfully complete the cryptographic algorithm validation process.
+implementation must meet all the requirements of FIPS 140-2 (in case of CAVP)
+and FIPS 140-3 (in case of ACVP) and must successfully complete the
+cryptographic algorithm validation process.
 
 Limitations
 -----------
 
-* Only NIST CAVP request files are parsed by this application.
-* The version of request file supported is ``CAVS 21.0``
+CAVP
+----
+
+* The version of request file supported is ``CAVS 21.0``.
 * If the header comment in a ``.req`` file does not contain a Algo tag
   i.e ``AES,TDES,GCM`` you need to manually add it into the header comment for
   example::
@@ -32,7 +35,7 @@  Limitations
       # VARIABLE KEY - KAT for CBC / # TDES VARIABLE KEY - KAT for CBC
 
 * The application does not supply the test vectors. The user is expected to
-  obtain the test vector files from `NIST
+  obtain the test vector files from `CAVP
   <https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
   program/block-ciphers>`_ website. To obtain the ``.req`` files you need to
   email a person from the NIST website and pay for the ``.req`` files.
@@ -48,6 +51,19 @@  Limitations
     * TDES-CBC (1 Key, 2 Keys, 3 Keys) - MMT, Monte, Permop, Subkey, Varkey,
       VarText
 
+ACVP
+----
+
+* The application does not supply the test vectors. The user is expected to
+  obtain the test vector files from `ACVP  <https://pages.nist.gov/ACVP>`_
+  website.
+* Supported test vectors
+    * AES-CBC (128,192,256) - AFT, MCT
+    * AES-GCM (128,192,256) - AFT
+    * AES-CMAC (128,192,256) - AFT
+    * HMAC (SHA1, SHA224, SHA256, SHA384, SHA512)
+
+
 Application Information
 -----------------------