diff --git a/src/scheme.rs b/src/scheme.rs
index bb8bb85..d291f87 100644
--- a/src/scheme.rs
+++ b/src/scheme.rs
@@ -51,7 +51,7 @@ pub enum Scheme {
 	/// - Nonce size: 192 bits
 	/// - Max data size: 256 GB
 	/// - Max invocations: no limitation
-	/// - Resources: [RFC 7539](https://datatracker.ietf.org/doc/html/rfc7539),
+	/// - Resources: [RFC 7539](https://doi.org/10.17487/RFC7539)
 	/// [draft-irtf-cfrg-xchacha](https://datatracker.ietf.org/doc/html/draft-irtf-cfrg-xchacha)
 	XChaCha20Poly1305WithBlake3 = 1,
 	/// - Key derivation: HKDF-SHA256
diff --git a/src/scheme/aes.rs b/src/scheme/aes.rs
index ee7fc9c..2b0ac26 100644
--- a/src/scheme/aes.rs
+++ b/src/scheme/aes.rs
@@ -5,7 +5,7 @@ use aes_gcm::{Aes128Gcm, Key, Nonce};
 
 // 96 bits (12 bytes)
 // Reason: NIST Special Publication 800-38D
-// https://csrc.nist.gov/pubs/sp/800/38/d/final
+// https://doi.org/10.6028/NIST.SP.800-38D
 // Section 5.2.1.1 recommends that implementations restrict support to 96 bit.
 // Section 8.2 states that nonces of 96 bits and higher may be randomly generated.
 const NONCE_SIZE: usize = 12;