Via puts RNGs on new processors

t.c.jones at att.net t.c.jones at att.net
Tue Apr 8 23:40:31 EDT 2003


The POST is really the wrong place to put it.  Nothing reads the POST data - 
it is not std across anything.  And the O/S is the code that is validated for 
NIST.  So the o/s would need to re-run the validation in any case.   ..tom
> t.c.jones at att.net writes:
> 
> >FIPS certification requires a certain miminal tests of RNG functionality
> >every time the process is started.
> 
> Presumably we'd see this as a standard part of the POST (power-on self-test)
> option in Nehemiah-aware BIOSes, just as various other CPU-specific features
> are managed by specific BIOSes.  There'd also be a "Continue anyway if TRNG
> test fails" option, enabled by default so as not to inconvenience users.
> 
> Peter.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com



More information about the cryptography mailing list