[cryptography] on using RDRAND [was: Entropy improvement: haveged + rngd together?]

Patrick Pelletier code at funwithsoftware.org
Fri Dec 6 03:07:01 EST 2013


On 12/2/13, 3:16 PM, dj-0ozViSyrzglBDgjK7y7TUQ at public.gmane.org wrote:

> I'm currently arguing with NIST about their specifications which make it
> hard to provide raw entropy while being FIPS 140-2 and NIST SP800-90
> compliant. If I had a free hand, it would not be a configuration.
> Configurations suck in numerous ways. It would just be there.

Is the TRNG circuit small enough you could just slap down two of them, 
and use one to feed the NIST pipeline and use the other for raw entropy 
access?

--Patrick




More information about the cryptography mailing list