[cryptography] Intel RNG

Jon Callas jon at callas.org
Tue Jun 19 02:19:41 EDT 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Jun 18, 2012, at 9:46 PM, Marsh Ray wrote:

>> This results in the creation of a black-box or component approach.
>> Because of this and perhaps only because of this, block algorithms and
>> hashes have become the staples of crypto work. Public key crypto and
>> HMACs less so. Anything crazier isn't worth discussing.
> 
> I don't get it. Why can't we have effective test vectors for HMACs and public key algorithms?
> 

We do. FIPS 140 CAVS tests are a damned good set of vectors. The complaints I have about them is that there are too many and some things that are of questionable benefit (the so-called "Monte Carlo" tests, for one) rather than that there are too few of them.

There are even test vectors for the DRBGs. They give you entropy inputs and everything and look at your output.

	Jon


-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 3.2.0 (Build 1672)
Charset: us-ascii

wj8DBQFP4Bn9sTedWZOD3gYRAkXpAJ9p2kkFBYOgVsiIhjgFlXOKCQFRmACgluQh
74tRuchgKXk60pBrlmhr3zE=
=qsCQ
-----END PGP SIGNATURE-----



More information about the cryptography mailing list