Lightweight Cryptography Algorithm to Secure IoT Devices – NIST Standardization

The National Institute of Standards and Technology (NIST) has been developing standards and guidelines for cryptography, including lightweight cryptography. Lightweight cryptography refers to cryptographic algorithms that are designed to be implemented on low-end devices with limited resources, such as embedded systems, Internet of Things (IoT) devices, and smart cards.

There’s a new defender of data generated by IoT and small devices. Ascon will become NIST’s new lightweight cryptography standard later this year.

Learn more: https://t.co/EEJ7MW9B58 pic.twitter.com/9utZ9NHvlX

— National Institute of Standards and Technology (@NIST) February 7, 2023

NIST said: “The chosen algorithms are designed to protect information created and transmitted by the Internet of Things (IoT), including its myriad tiny sensors and actuators.”

 “They are also designed for other miniature technologies such as implanted medical devices, stress detectors inside roads and bridges, and keyless entry fobs for vehicles.”

Put differently, the idea is to adopt security protections via lightweight cryptography in devices that have a “limited amount of electronic resources.”

NIST has published several standards and guidelines for lightweight cryptography, including the NIST Special Publication 800-38G, which provides recommendations for lightweight cryptography algorithms, and the NIST Cryptographic Algorithm Validation Program (CAVP), which provides validation testing for cryptographic algorithms.

In particular, NIST has been working on the development of the SHA-3 family of hash functions, which includes several lightweight hash functions, such as Keccak, that can be used for various purposes, such as digital signatures, message authentication codes, and hash-based random number generators. 

NIST has also been working on the development of lightweight block ciphers, such as Simon and Speck, which can be used for encryption and decryption.

Ascon authenticated encryption

Ascon is a family of authenticated encryption algorithms that were submitted to the NIST Post-Quantum Cryptography Standardization process. The NIST Post-Quantum Cryptography Standardization process is an ongoing effort by NIST to standardize post-quantum cryptography, which is cryptography that is secure against attacks by quantum computers.

Ascon is designed to be secure against both classical and quantum computers and to be highly efficient on a wide range of platforms, including low-end devices. It is a family of algorithms that includes several different variants with different security levels and performance characteristics.

Ascon is one of the several candidate algorithms that have been proposed for post-quantum cryptography and was considered by NIST. The final decision on which algorithm or algorithms will be standardized as part of the NIST Post-Quantum Cryptography Standardization process has been made. To better understand these developments, experts often explore how preparing for postquantum cryptography can impact future encryption strategies.

Concluding thoughts

NIST’s efforts to develop standards and guidelines for lightweight cryptography play a critical role in ensuring the security of low-end devices and the protection of sensitive information in a variety of applications.