FSB Proposes Encrypting Runet Data with Domestic Cryptographic Algorithms

The Technical Committee for Standardization “Cryptographic Information Protection” (TC 26), overseen by the FSB, has prepared draft recommendations for using Russian cryptographic algorithms “Magma” and “Kuznyechik” in key protocols designed to protect information on the internet. According to RBC, these standards will first be applied to government websites and, in the future, to the entire Russian segment of the internet.

One of the documents includes a set of recommendations for using the Russian cryptographic algorithms “Magma” and “Kuznyechik,” developed by the FSB, in the latest version of the TLS protocol. This protocol is used to protect data in browsers, instant messaging services, and email.

Under Russian law, domestic cryptographic algorithms must be used in information protection tools certified by the FSB and are mandatory for use by government agencies in their electronic document management. Starting in 2024, according to requirements from the Central Bank of Russia, these algorithms will also become mandatory for use in payment systems.

After approval by Rosstandart, protocols with domestic cryptographic algorithms may be used in the development of software and hardware for protecting departmental communication channels. This includes routers, universal devices for protecting IP networks from attacks and threats, and more, experts explain.

Currently, there are no plans to implement Russian cryptographic algorithms on all Runet websites. However, the federal project “Information Security” within the national program “Digital Economy” mentions the development of a “roadmap” for transitioning the entire Russian internet segment to domestic cryptography. Experts believe this measure will increase the security and resilience of Runet.