Anton Stiglic [EMAIL PROTECTED] writes:
It is important to chose both a random seed and random key, and FIPS 140 has
no provision for this.
Yes it does, you just have to interpret it correctly.
The post-processed pool output [from the cryptlib generator] is not sent
directly to the caller
On Fri, Aug 29, 2003 at 11:27:41AM +0100, Ben Laurie wrote:
As you mentioned, the FIPS-140-2 approved PRNG
are deterministic, they take a random seed and extend it
to more random bytes. But FIPS-140-2 has no
provision for generating the seed in the first place,
this is where
On Fri, Aug 22, 2003 at 10:00:14AM -0700, Bob Baldwin PlusFive wrote:
Tim,
One issue to consider is whether the system
that includes the PRNG will ever need a FIPS-140-2
rating. For example, people are now working on
a FIPS-140 validation for OpenSSL. If so, then
the generator for