Review of Changes to NIAP TLS, SSH and X.509 Functional Packages for CC:2022 And CNSA 2.0 (C20b)

Review of Changes to NIAP TLS, SSH and X.509 Functional Packages for CC:2022 And CNSA 2.0 (C20b)

In 2024/2025, NIAP published updates to their cryptographic functional packages for TLS and SSH and introduced a new package for X.509. These updates incorporate changes for CC:2022 and CNSA 2.0, claimed by the latest versions of NIAP protection profiles such as Application Software, Operating Systems, Mobile Device Management and Virtualization. This talk details the significant growth in scope (e.g., TLS expanding from 25 to 109 pages), outlines key changes, and explains how vendors can prepare for transition to protection profiles claiming these updated packages.