Categories: Cyber Security News

NIST Releases New ‘Lightweight Cryptography’ Standard for IoT Security

The National Institute of Standards and Technology (NIST) has officially published NIST Special Publication 800-232, formally standardizing the Ascon family of cryptographic algorithms designed specifically for resource-constrained environments.

Released in August 2025, this landmark publication represents the culmination of a rigorous multi-year standardization process that began with NIST’s Lightweight Cryptography Standardization initiative in 2015.NIST.SP.800-232.pdf

The Ascon family, originally developed by Christoph Dobraunig, Maria Eichlseder, Florian Mendel, and Martin Schläffer, emerged victorious from NIST’s competitive evaluation process in February 2023.

The standardization addresses critical security needs for Internet of Things (IoT) devices, embedded systems, and low-power sensors where traditional cryptographic standards like AES-GCM and SHA-2 may prove too resource-intensive.NIST.SP.800-232.pdf

Table of Contents

Toggle

Comprehensive Cryptographic Suite

The standardized Ascon family encompasses four distinct but complementary algorithms, each serving specific cryptographic functions while sharing an underlying permutation-based architecture.

Ascon-AEAD128 provides authenticated encryption with associated data (AEAD) capabilities, offering 128-bit security strength in single-key settings with nonce-based protection.

This algorithm ensures both confidentiality of plaintext data and integrity verification through authentication tags.NIST.SP.800-232.pdf

The hash function component, Ascon-Hash256, produces 256-bit message digests with 128-bit security strength, providing collision, preimage, and second preimage resistance.

For applications requiring variable-length outputs, Ascon-XOF128 offers eXtendable Output Function capabilities with user-selectable output sizes up to 128-bit security strength.

Additionally, Ascon-CXOF128 enhances the XOF functionality by incorporating customization strings, enabling domain separation for applications requiring distinct outputs from identical inputs.NIST.SP.800-232.pdf

Technical Innovation and Security Guarantees

The Ascon algorithms distinguish themselves through several innovative design features that optimize performance for constrained environments.

All family members utilize shared permutation logic, enabling more compact implementations compared to independently developed functions.

Sponsored

The algorithms operate in an online, single-pass manner, meaning ciphertext blocks are generated incrementally without requiring complete input knowledge upfront.NIST.SP.800-232.pdf

Crucially, the standardized algorithms are inverse-free, eliminating the computational overhead of implementing reverse permutations.

The specification includes multiple implementation options, including tag truncation capabilities and nonce masking for enhanced security properties.

The standard also addresses multi-key settings, providing security strength formulas that account for the number of independent keys in use.NIST.SP.800-232.pdf

Algorithm	Primary Function	Output Size	Security Strength	Key Features
Ascon-AEAD128	Authenticated Encryption	Variable + 128-bit tag	128 bits	Nonce-based, online processing
Ascon-Hash256	Hash Function	256 bits	128 bits	Fixed-length digest
Ascon-XOF128	Extendable Output	User-defined	Up to 128 bits	Variable-length output
Ascon-CXOF128	Customized XOF	User-defined	Up to 128 bits	Domain separation support

The publication establishes comprehensive security requirements, including key generation guidelines, nonce uniqueness requirements, and data processing limits.

For practical deployment, the standard specifies maximum data limits of 2^54 bytes per key and provides detailed guidance on decryption failure thresholds based on authentication tag lengths.NIST.SP.800-232.pdf

This standardization milestone provides industry stakeholders with formally approved cryptographic tools specifically optimized for the expanding ecosystem of resource-constrained devices, ensuring robust security without compromising performance in bandwidth-limited and power-sensitive applications.

Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates

The post NIST Releases New ‘Lightweight Cryptography’ Standard for IoT Security appeared first on Cyber Security News.

New NIST Guide Outlines 19 Approaches to Zero Trust Architecture

The National Institute of Standards and Technology (NIST) has released comprehensive guidance for organizations seeking to implement zero trust architectures, marking a significant advancement in cybersecurity strategy. The newly finalized publication, “Implementing a Zero Trust Architecture” (NIST SP 1800-35), provides 19 practical example implementations using commercial off-the-shelf technologies, developed through…

June 13, 2025

In "Cyber Security News"

NIST Released 19 Zero Trust Architecture Implementations Guide – What’s New

The National Institute of Standards and Technology (NIST) has published a new resource to aid organizations in implementing zero trust architectures (ZTAs), a cybersecurity approach that assumes no user or device is inherently trustworthy. The guidance, titled Implementing a Zero Trust Architecture (NIST SP 1800-35), details 19 example ZTA implementations…

June 14, 2025

In "Cyber Security News"

NIST Will Mark All CVEs Published Before 01/01/2018 as ‘Deferred’

The National Institute of Standards and Technology (NIST) announced on April 2, 2025, that all Common Vulnerabilities and Exposures (CVEs) with a published date prior to January 1, 2018, will be marked as “Deferred” within the National Vulnerability Database (NVD) dataset. This significant change affects approximately 94,000 CVEs, representing about…

April 8, 2025

In "Cyber Security News"

rssfeeds-admin