Via puts RNGs on new processors
t.c.jones at att.net
t.c.jones at att.net
Tue Apr 8 23:40:31 EDT 2003
The POST is really the wrong place to put it. Nothing reads the POST data -
it is not std across anything. And the O/S is the code that is validated for
NIST. So the o/s would need to re-run the validation in any case. ..tom
> t.c.jones at att.net writes:
>
> >FIPS certification requires a certain miminal tests of RNG functionality
> >every time the process is started.
>
> Presumably we'd see this as a standard part of the POST (power-on self-test)
> option in Nehemiah-aware BIOSes, just as various other CPU-specific features
> are managed by specific BIOSes. There'd also be a "Continue anyway if TRNG
> test fails" option, enabled by default so as not to inconvenience users.
>
> Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list