The NIST' s standard for {digital SIgnatures} (authenticating both a message and the SIgner) that was first announced in 1991. It is based on an algorithm uSIng discrete logarithms, which is a variant of the Elgamal algorithm with Schnorr' s improvements. DSS' s security is currently conSIdered very strong - comparable to RSA. It is estimated that DSS' s 1024-bit keys would take 1.4E16 MIPS-years to crack. (1995-11-16)