[Cryptography] OpenSSL CSPRNG work
Darren Moffat
darren at nessieroo.com
Thu Jun 29 11:54:15 EDT 2017
In addition to the performance concerns and platforms (yes people really do
run modern OpenSSL, often bundled with layered software) on a 10 year old
OS) OpenSSL needs to have its own DRBG inside it's own libraries for FIPS
140 validation reasons. For the FIPS case the only answer is having its own
implementation of a NIST approved DRBG.
Darren Moffat
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20170629/0f09e9d6/attachment.html>
More information about the cryptography
mailing list