Do comparable standards like FIPS exist for Germany or the European Union?

Asked May 30 '22 at 17:35

Active May 30 '22 at 19:53

Viewed 22 times

NIST, the National Institute of Standards and Technology, does publish FIPS, the Federal Information Processing Standards Publications.

Does Germany or the European Union have their own standards?

Or do comparable standards at all exist in the world?

FIPS Publications Examples below:

Screenshot from nist.gov – 30.05.2022

edited May 30 '22 at 19:53

schroeder

asked May 30 '22 at 17:35

foshyboy

1

I googled "eu version of fips" and this was the top hit: https://www.enisa.europa.eu/publications/tsp1-framework/at_download/fullReport – schroeder May 30 '22 at 19:55
Not exactly. The US philosophy is to define precise algorithms and architectures. For example, you must use AES, not Camellia, even though there's no reason to think Camellia is less secure. European agencies largely leave the definition of algorithms, protocols and architecture to private actors. What they want is a convincing argument that the product is secure (which is easier when it's “I used AES securely” than when it's “I rolled my own crypto”). Look up [SOG-IS](https://www.sogis.eu) publications and participating national agencies. – Gilles 'SO- stop being evil' May 30 '22 at 22:55

0 Answers0