[cryptography] [liberationtech] Heml.is - "The Beautiful & Secure Messenger"
ben at links.org
Sat Jul 13 06:06:36 EDT 2013
On 13 July 2013 10:11, Peter Gutmann <pgut001 at cs.auckland.ac.nz> wrote:
> and run
> a self-test with known-good test vectors on startup, and ... well, you get the
Amusing story: FIPS 140 requires self-tests on the PRNG. There was a
bug in FIPS OpenSSL once where the self-test mode got stuck on and so
no entropy was fed into the PRNG.
Also, back when I was doing FIPS 140 they made me remove some of the
entropy feeds into the PRNG - particularly ones that protect against
pool duplication over forks.
More information about the cryptography