Type 1 Encryption Requirements for NSS

Type 1 encryption represents the highest classification tier of cryptographic protection recognized by the United States government, governing the protection of classified national security information across federal agencies, defense contractors, and critical infrastructure operators. This page covers the definition, technical mechanism, operational scenarios, and qualification boundaries for Type 1 encryption as applied to National Security Systems (NSS). Compliance with these requirements is enforced through a layered framework of statute, policy, and product certification administered by the National Security Agency (NSA). Understanding where Type 1 requirements apply — and where they stop — is essential for any organization operating within or adjacent to the NSS sector, as explored in the Security Systems Providers.

Definition and scope

Type 1 encryption is a designation assigned by the NSA to cryptographic equipment and algorithms that have been certified for protecting classified U.S. government information. The classification is defined under Committee on National Security Systems (CNSS) Policy 15, which establishes the standards for the use of cryptographic systems within NSS environments.

An NSS, as defined under 44 U.S.C. § 3552(b)(6) and reinforced by CNSSI No. 4009, is any telecommunications or information system operated by the U.S. government that involves intelligence activities, cryptographic activities related to national security, command and control of military forces, or equipment that is an integral part of a weapon or weapons system. Systems processing information classified at the SECRET or TOP SECRET level fall squarely within NSS scope and therefore require Type 1-certified solutions.

The NSA's Information Assurance Directorate maintains the Commercial Solutions for Classified (CSfC) program and the legacy Type 1 product lists, which identify approved algorithms including Suite A (classified NSA-developed algorithms) and Suite B/Commercial National Security Algorithm (CNSA) Suite algorithms such as AES-256, RSA-3072 or higher, and SHA-384.

Type 1 products include hardware cryptographic modules, software-defined encryption implementations embedded in approved hardware, and key management systems. The distinction between Type 1 and non-Type 1 encryption is not merely algorithmic — it encompasses the entire chain of key management, tamper resistance, physical security, and supply chain integrity verified through NSA evaluation.

How it works

Type 1 encryption operates through a structured process that integrates algorithm strength, hardware security modules, key fill procedures, and operational security controls.

• Algorithm selection: Approved cryptographic algorithms are drawn from the CNSA Suite (NSA CNSA Suite announcement), which specifies AES with 256-bit keys for symmetric encryption, Elliptic Curve Diffie-Hellman with P-384 for key exchange, and ECDSA with P-384 for digital signatures.
• Device certification: Hardware or software implementations must pass NSA evaluation. Approved devices appear on the NSA's Evaluated Products List (EPL). No unevaluated device qualifies for Type 1 designation regardless of algorithm strength.
• Key management: Cryptographic keys are generated, distributed, loaded, and destroyed according to CNSSI No. 4005 and NSA/CSS Policy Manual 3-16, which govern keying material handling, storage, and destruction standards for classified key material.
• Physical security integration: Type 1 devices must meet tamper-evidence and tamper-resistance requirements aligned with FIPS 140-3 at Security Level 3 or higher as a baseline, though NSA evaluation extends beyond FIPS 140-3 validation to include classified testing criteria.
• Operational accountability: Each Type 1 device is tracked through a classified inventory system. Loss, compromise, or unauthorized transfer triggers mandatory reporting under the NSS incident framework.

The separation between Type 1 and the FIPS 140-3 validated products used in non-NSS federal systems is a critical architectural distinction. FIPS 140-3 validation, administered by NIST's Cryptographic Module Validation Program (CMVP), satisfies requirements for systems processing Controlled Unclassified Information (CUI) but does not meet the NSS threshold. Type 1 requires NSA certification, not NIST CMVP provider, and the two programs are parallel rather than hierarchical.

Common scenarios

Type 1 encryption requirements arise in four primary operational contexts within the NSS sector:

• Tactical military communications: Voice, data, and video links operating at classification levels above UNCLASSIFIED use Type 1 devices. The KG-175D (Taclane Nano) is a publicly disclosed example of an NSA-certified Type 1 in-line network encryptor appearing on the NSA EPL.
• Intelligence community networks: Systems interconnecting agencies within the Intelligence Community (IC), such as those operating on classified networks like SIPRNet and JWICS, mandate Type 1 encryption for all data-in-transit.
• Satellite and space systems: Command and control links for classified satellites require Type 1 encryption as governed by CNSS Policy 15 and associated directives from the Office of the Director of National Intelligence (ODNI).
• Defense industrial base (DIB) classified enclaves: Cleared defense contractors operating classified information systems under Defense Security Service (now Defense Counterintelligence and Security Agency, DCSA) oversight must implement Type 1 solutions when processing SECRET or above.

For service providers and contractors navigating these requirements, the Security Systems Provider Network Purpose and Scope provides context on how the broader sector is structured.

Decision boundaries

The determination of whether Type 1 encryption is required — as opposed to FIPS 140-3 validated commercial encryption or CSfC layered solutions — depends on three classification-driven criteria:

Classification level: Systems processing CONFIDENTIAL, SECRET, or TOP SECRET national security information require Type 1. Systems processing only CUI under 32 C.F.R. Part 2002 and non-NSS federal systems may use FIPS 140-3 validated modules under NIST SP 800-53, Rev. 5, Control SC-13.

System designation: A system formally designated as an NSS by the owning agency under CNSS criteria triggers Type 1 requirements regardless of the specific data classification level at any given moment. Designation is a structural attribute of the system architecture.

CSfC as an alternative pathway: Since 2012, NSA's Commercial Solutions for Classified program has offered a layered commercial encryption approach — pairing two independent FIPS 140-2 or 140-3 validated solutions — as an approved alternative to traditional Type 1 hardware in specific use cases. The NSA CSfC program page and associated Capability Packages define exactly which mission profiles permit CSfC substitution and which require legacy Type 1 hardware.

Interoperability constraints: Some legacy NSS environments cannot interoperate with CSfC solutions due to protocol or bandwidth constraints. In those cases, Type 1 hardware remains mandatory and no commercial substitute exists. Practitioners assessing these boundaries should reference the How to Use This Security Systems Resource page for navigational context across the sector's service categories.

 ·   · 

References

• Committee on National Security Systems (CNSS) Policy 15
• 44 U.S.C. § 3552(b)(6)
• CNSSI No. 4009
• Information Assurance Directorate
• NSA CNSA Suite announcement
• NSA/CSS Policy Manual 3-16
• FIPS 140-3
• NIST's Cryptographic Module Validation Program (CMVP)
• ODNI
• Defense Counterintelligence and Security Agency, DCSA
• 32 C.F.R. Part 2002
• NIST SP 800-53, Rev. 5, Control SC-13
• NSA CSfC program page