When using SHA-2 for hashing, an output size of at least 256 bits is used, preferably SHA-384 or SHA-512.
Topic
Using Secure Hashing Algorithms
Applicable to
Secret
History
Dec 2024
When using SHA-2 for hashing, an output size of at least 256 bits is used, preferably SHA-384 or SHA-512.
The existing control recommending that when using SHA-2 for hashing, an output size of at least 256 bits is used, preferably SHA-384 was amended to ‘preferably SHA-384 or SHA-512’.
Mar 2022
When using SHA-2 for hashing, an output size of at least 256 bits is used, preferably SHA-384.
The existing table outlining cryptographic algorithms for use with High Assurance Cryptographic Equipment has been converted into discrete recommendations. Furthermore, the recommendation to give preference to the United State’s Commercial National Security Algorithm suite algorithms and key sizes (ISM-1232) has been rescinded in preference to including recommended key lengths for each individual algorithm.