restrictions on current implementations. As a result a FIPS 140-
certified key generator will be worse than a well-designed non-FIPS-140
one because the FIPS requirements prevent you from doing several things
that would improve the functioning like injecting extra entropy into the
generator
| From: [Name Withheld]
| To: cryptography@metzdowd.com
| Subject: Re: How important is FIPS 140-2 Level 1 cert?
|
| Paul Hoffman [EMAIL PROTECTED] wrote:
|
| At 11:25 AM -0500 12/21/06, Saqib Ali wrote:
| If two products have exactly same feature set, but one is FIPS 140-2
| Level 1
On 12/22/2006 01:57 PM, Alex Alten wrote:
I'm curious as to why the cops didn't just pull the plugs right away.
Because that would be a Bad Idea. In a halfway-well-designed
system, cutting the power would just do the secret-keepers' job
for them.
It would probably
take a while (minutes,
On Fri, Dec 22, 2006 at 10:57:17AM -0800, Alex Alten wrote:
I'm curious as to why the cops didn't just pull the plugs right away. It
would probably
take a while (minutes, hours?) to encrypt any significant amount of
data.
At the risk of stating the obvious, this is almost certainly
http://augustans.blogspot.com/2006/12/out-of-thin-air.html
This comes from an interesting SIGINT and more blog from
the Augusta Metro Spirit, a local weekly newspaper. Excerpts:
... Augusta is about to get a $340-million taste of Sweet Tea.
The National Security Agency is building a massive
Udhay Shankar reports:
http://news.zdnet.com/2100-1009_22-6142935.html
British start-up Yuzoz has announced that it will be launching its
beta service in the next two weeks--an online random-number generator
driven by astronomical events.
Heh heh. Pretty amusing. I guess the founders haven't