Valerie Bubb Fenwick wrote: > On Thu, 14 May 2009, Krishna Yenduri wrote: > >> On 05/12/09 17:11, Valerie Bubb Fenwick wrote: >>> .. >>>>> >>>>> KY-9 RNG section >>>>> >>>>> Do we need to fix >>>>> 6770268 Implement changes described in FIPS 186-2 Change Notice 1 >>>>> >>>>> for the certification? >>>>> I guess this falls under "mitigation of other attacks" from KY-4 :-). >>>>> >>>> >>>> I don't believe so, but that can be double checked with the lab.. I >>>> remember it was said we were done with the RNG.. >>> >>> I don't know, either. It is a good item to add to our list of questions >>> for the lab. Also, since a lot of our RNG code came from another module >>> in solaris that is also seeking FIPS-140-2 certification, I am sure we >>> will hear if they have to implement it, too :) >> >> I finally took a closer look at the changes needed, since I keep >> harping on this RFE :-). The changes turned out to be simple. >> >> I have added a suggested fix to the RFE. > > Hai-May - > > are we accepting this then for our design/work effort? I didn't > see anything added to our internal draft of the design. > > Valerie
We heard back from Atlan on this one and they said there is no requirement for FIPS 140-2 to have the Change Notice 1 implemented. So as part of this project, it will not be implemented. That doesn't preclude anyone else from working on it or it being done after the FIPS project. Tony
