[13973] in cryptography@c2.net mail archive
Re: PRNG design document?
daemon@ATHENA.MIT.EDU (Ben Laurie)
Fri Aug 29 14:55:09 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 29 Aug 2003 11:27:41 +0100
From: Ben Laurie <ben@algroup.co.uk>
To: Anton Stiglic <astiglic@okiok.com>
Cc: Bob Baldwin PlusFive <baldwin@plusfive.com>,
Tim Dierks <tim@dierks.org>, cryptography@metzdowd.com
In-Reply-To: <005001c36ca1$9e2894e0$3f00a8c0@p1038mobile>
Anton Stiglic wrote:
> ----- Original Message -----
> From: "Bob Baldwin PlusFive" <baldwin@plusfive.com>
> To: "Tim Dierks" <tim@dierks.org>
> Cc: <cryptography@metzdowd.com>
> Sent: Friday, August 22, 2003 1:00 PM
> Subject: Re: PRNG design document?
>
>
>
>>Tim,
>> One issue to consider is whether the system
>>that includes the PRNG will ever need a FIPS-140-2
>>rating.
>>[...]
>
>
> As you mentioned, the FIPS-140-2 approved PRNG
> are deterministic, they take a random seed and extend it
> to more random bytes. But FIPS-140-2 has no
> provision for generating the seed in the first place,
> this is where something like Yarrow or the cryptlib
> RNG come in handy.
Actually, FIPS-140 _does_ have provision for seeding, at least for X9.17
(you use the time :-), but not for keying.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
