Skip to content

Advanced Encryption Standard (AES) Published

26 November 2001.Cybersecurity.Standard published.Date precision, exact.Evidence grade, primary.2 primary sources

Drivers:

Security incidentStandardisationTechnological capability

DES's demonstrable weakness forced development of a replacement. The internet's growth made efficient encryption essential. Hardware advances enabled more complex algorithms. Global commerce required internationally accepted standards.

AES is the encryption standard used to protect almost everything digital today, from your WhatsApp messages to online banking. It replaced the older DES standard after a worldwide competition to find the best algorithm. AES is like an extremely sophisticated scrambling system that even the most powerful computers cannot crack.

Advanced Encryption Standard (AES) Published event plate

Structured atlas record showing date, domain, evidence grade, source count, and predecessor and successor links.

Event plate: Advanced Encryption Standard (AES) Published Convergence-divergence layout. The central hero card carries the event year, type, title, evidence grade, domain and era band. 0 predecessor cards on the left feed in with red arrows labelled "absorbs". 0 successor cards on the right derive with red arrows labelled "spawns". Key terms below the hero pin the vocabulary the event introduced. EVENT PLATE Source: https://csrc.nist.gov/publications/detail/fips/197/final 2001 - STANDARD PUBLISHED Advanced EncryptionStandard (AES) Published primary evidence Domain: AI and machine learning Era band: E6 AI-scale systems KEY TERMS - VOCABULARY THE EVENT INTRODUCED AES Rijndael symmetric encryption block cipher Convergence-divergence: predecessors absorbed, successors spawned Hero card carries year, evidence and domain. 0 predecessors flow in from the left; 0 successors flow out to the right. Key termsbelow pin the vocabulary the event introduced.

Forecasts and counterfactuals stay labelled as opinion in the event data. Source: Computer History Museum.

Before

DES was demonstrably broken by brute force in 1998 (EFF's Deep Crack). Triple DES was slow and inelegant. The internet's growth demanded a modern, efficient encryption standard. No successor had been officially standardised.

What changed

NIST selected Rijndael as the Advanced Encryption Standard after a five-year public competition. AES provided stronger security (128/192/256-bit keys), better performance, and modern design. It became the global standard for symmetric encryption.

How it happened

NIST initiated the AES selection process in 1997. Fifteen algorithms were submitted, narrowed to five finalists in 1999. After extensive public analysis, Rijndael (by Joan Daemen and Vincent Rijmen) was selected in October 2000 and published as FIPS 197 in November 2001. The open competition model set a precedent for cryptographic standardisation.

Outcomes

  • Established modern global encryption standard
  • Demonstrated successful open cryptographic competition
  • Enabled efficient encryption in hardware and software
  • Replaced DES in government and commercial use

Limitations

  • Potential vulnerability to related-key attacks in certain modes
  • Requires careful mode selection (ECB mode is insecure)
  • Implementation side-channels require mitigation
  • Future quantum computing may threaten (requires 256-bit keys)

Lessons learnt

  • Open competition produces robust standards
  • International participation strengthens cryptography
  • Performance and security must be balanced
  • Standards must anticipate decades of use

Stakeholders and artefacts

Organisations

  • NISTgovernmentConducted selection process, published standard
  • Katholieke Universiteit LeuvenacademiaDaemen and Rijmen's institution

Individuals

  • Joan DaemenCo-designer, Proton World InternationalCo-designed Rijndael algorithm
  • Vincent RijmenCo-designer, Katholieke Universiteit LeuvenCo-designed Rijndael algorithm

Artefacts

  • AESprotocolSymmetric block cipher with 128/192/256-bit keys
  • RijndaelprotocolOriginal algorithm name, allows variable block sizes

Key terms

AESRijndaelsymmetric encryptionblock cipherFIPS 197

Causality

Preceded by: Data Encryption Standard (DES) Published.

On this course

Read in the path Cybersecurity: Threats and Defences.

Sources

1"FIPS PUB 197: Advanced Encryption Standard (AES)". NIST, 2001-11-26.authoritativecsrc.nist.gov/publications/detail/fips/197/final
2"Advanced Encryption Standard (AES) Development Effort". NIST, 2000-10-02.authoritativecsrc.nist.gov/projects/cryptographic-standards-and-guidelines/archived-crypto-projects/aes-development