NIST vs ISO Encryption standardisation process

skinny cipher has been lately considered as ISO/IEC standard while is still competing as building block of Romulus AEAD in NIST LWC finalists.

what is the difference between the two ISO and NIST processes? which is higher hand in the industry adoption ?

ISO/IEC are paid standards, it's a business.

The NIST produce free standards that can be made mandatory for US institutions (like the DoD) and its industrial partners.

Opinion: The NIST standards are favored by the cryptography industry. The academic research community does not care much however, because any standard will end up lagging behind the state-of-the-art with time.

From an international security perspective (and simply laying out the publicly known facts), some people/governments are wary of NIST cryptographic standards. Sorry about the quoted boilerplate legalese, but it's fundamental to my answer and the NIST vs ISO debate. Strong cryptography lives within a political dialectic, not just inside a mathematical debate.

From NIST's SP800-90b, Recommendation for the Entropy Sources Used for Random Bit Generation:-

This publication has been developed by NIST in accordance with its statutory responsibilities under the Federal Information Security Modernization Act (FISMA) of 2014, 44 U.S.C. § 3551 et seq., Public Law (P.L.) 113-283. NIST is responsible for developing information security standards and guidelines, including minimum requirements for federal information systems, but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems.

Which says:-

§ 3553. Authority and functions of the Director and the Secretary:-

(d) NATIONAL SECURITY SYSTEMS.—Except for the authorities and functions described in subsection (a)(5) and subsection (c), the authorities and functions of the Director and the Secretary under this section shall not apply to national security systems.

(e) DEPARTMENT OF DEFENSE AND INTELLIGENCE COMMUNITY SYSTEMS.—(1) The authorities of the Director described in paragraphs (1) and (2) of subsection (a) shall be delegated to the Secretary of Defense in the case of systems described in paragraph (2) and to the Director of National Intelligence in the case of systems described in paragraph (3).

So whilst ISO standards are drawn up publicly by various groups in various countries, NIST standards for cryptography have final approval by the US Secretary of Defence and Director of National Intelligence. Their interests are divergent from those of the ISO committees, especially in light of the US' acknowledged NOBUS policy {Ref. 1}{Ref 2}.

E.g. ISO/IEC 18033-4:2011 Information technology — Security techniques — Encryption algorithms — Part 4: Stream ciphers if people haven't seen one before.