Commercial National Security Algorithm Suite Cryptography for Secure Shell
RFC 9212, “Commercial National Security Algorithm Suite Cryptography for Secure Shell”, is an Informational document published in March 2022 by N. Gajcowski, M. Jenkins. The canonical text is published by the RFC Editor.
Abstract
The United States Government has published the National Security Agency (NSA) Commercial National Security Algorithm (CNSA) Suite, which defines cryptographic algorithm policy for national security applications. This document specifies the conventions for using the United States National Security Agency's CNSA Suite algorithms with the Secure Shell Transport Layer Protocol and the Secure Shell Authentication Protocol. It applies to the capabilities, configuration, and operation of all components of US National Security Systems (described in NIST Special Publication 800-59) that employ Secure Shell (SSH). This document is also appropriate for all other US Government systems that process high-value information. It is made publicly available for use by developers and operators of these and any other system deployments.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 9212 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9211 The Cache-Status HTTP Response Header Field
- RFC 9213 Targeted HTTP Cache Control
- RFC 9210 DNS Transport over TCP - Operational Requirements
- RFC 9214 OSPFv3 Code Point for MPLS LSP Ping
- RFC 9209 The Proxy-Status HTTP Response Header Field
- RFC 9215 Using GOST R 34.10-2012 and GOST R 34.11-2012 Algorithms with the Internet X.509 Public Key Infrastructure
- RFC 9216 S/MIME Example Keys and Certificates
- RFC 9208 IMAP QUOTA Extension