[Cryptography] SP800-90A B & C
dj at deadhat.com
dj at deadhat.com
Mon Nov 11 16:22:09 EST 2013
>
> I'm still not sure where we run into problems with (a) (there's some 140-2
> guidance that requires callers of RNGs to be authenticated at higher
> validation levels--that may cause problems), and at least so far I don't
> have an actual example of a FIPS lab refusing to allow a 90A DRBG to use
> additional input from an off-module unauthenticated source, (if you have
> one, please let me know) but I think this is something we can address in
> guidance on 90A.
>
My comments point to the source of the problem being in the spec and ask
for resolution with specificity.
More information about the cryptography
mailing list