[18922] in cryptography@c2.net mail archive
Re: Pseudorandom Number Generator in Ansi X9.17
daemon@ATHENA.MIT.EDU (Ben Laurie)
Sun Nov 13 11:33:18 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sat, 12 Nov 2005 13:24:28 +0000
From: Ben Laurie <ben@algroup.co.uk>
To: Terence Joseph <tjormor@hotmail.com>
Cc: cryptography@metzdowd.com
In-Reply-To: <BAY21-F2491551ED158D0DA62303EBC660@phx.gbl>
Terence Joseph wrote:
> Hi,
>
> The Pseudorandom Number Generator specified in Ansi X9.17 used to be one
> of the best PRNGs available if I am correct.
It was? When? I had to replace the OpenSSL PRNG with X9.31 (as has been
discussed elsewhere, this is the same PRNG) for the FIPS-140
certification, and in my opinion it was a large step backwards.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
