The NIST SP 800-108 is a type of publication that delves into key derivation using pseudorandom functions. In a recent update to the standard, a security issue was discovered by Amazon’s cryptographers, leading to the addition of a new section addressing Key Control Security. The attack against the initial design highlights the vulnerability when using AES-CMAC as the PRF in KDF Counter mode. The loss of Key Control Security opens the door to potential backdoors in applications, though it is not believed to be deliberate by NIST. Mitigation options include using HMAC or KMAC instead of CMAC to enhance security. Despite not being widely publicized, it is crucial to stay informed about NIST developments in the field of cryptography to prevent similar issues in the future.
https://scottarc.blog/2024/06/04/attacking-nist-sp-800-108/