Hi, I have a related question concerning alternative RNGs, hope it is not too off-topic:
Currently we are using the NIST-SP800-90a compliant DRBG (FIPS_drbg_method()), because it seemed to us to be more sophisticated and mature than the default RAND_SSLeay(). At least it's better documented and tested. Currently this DRBG is only available through the FIPS object module, so you need to build a FIPS capable OpenSSL library in order to use it. Shouldn't the FIPS DRBG code be added to the normal code base in master, too, as an alternative RNG implemtation? Or is the NIST-SP800-90a DRG construction already obsolete outside of FIPS world? Regards, Matthias _______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
