Quantum-Safe and FIPS Compliant: Navigating FIPS 140-3 Requirements for PQC Implementations (R30a)
The adoption of post-quantum cryptographic algorithms standardized by NIST, including ML-KEM, ML-DSA, and SLH-DSA, offers developers unprecedented flexibility in deployment strategies while imposing strict compliance requirements from NIST. Key implementation choices, such as seed-based versus traditional key pairs, pure vs pre-hashed signatures, and hybrid cryptographic constructs aligned with SP 800-227 guidelines, introduce ambiguities about compliant usage. These contrasts between flexibility and procedural rigidity create uncertainty among developers seeking practical deployment pathways that satisfy regulatory frameworks like FIPS IG 10.3.A and various standards documents which prescribe mandatory test vectors, interface specifications, and integration rules often buried outside formal standardization texts.
This talk addresses these challenges by proposing a structured guidance framework designed to aid developers in providing implementations complying with various standards and yet fit their particular needs when using these algorithms. A granular analysis of algorithm flexibility compared with the rigid requirements from NIST, the guideline is established. The approach offers the alignment between flexible deployment options such as seed-based key representations, or hybrid KEM designs, and compliance required for FIPS certification. By reconciling theoretical freedom allowed by the algorithm specification with NIST expectations, the guidance offers developers a means to employ all freedoms and yet complying with the regulatory requirements.
