One of our customers was *very* keen that we should use a "standard" PRNG
such as ANSI X9.17 - even though it has various problems as pointed out
by Bruce Schneier, it is "accepted" and that unfortunately is what matters
when a third-party risk assessment is carried out.
Anyhow we haven't complied as yet - I prefer Eric's one to X9.17 although
I did patch it to use SHA-1 instead of MD5 - but I thought you should
consider making a pluggable interface for the PRNG when you put Peter
Gutmann's one in.
We also built Windows{NT,98,95,3.1} soundcard support for randomness
gathering (crank the microphone volume, and grab 8K bits of LSBs).
Don't know whether we can release it however, I'll ask.
--
Clifford Heath http://www.osa.com.au/~cjh
Open Software Associates Limited mailto:[EMAIL PROTECTED]
29 Ringwood Street / PO Box 4414 Phone +613 9871 1694
Ringwood VIC 3134 AUSTRALIA Fax +613 9871 1711
------------------------------------------------------------
Deploying Solutions to the Enterprise
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
