Re: Entropy Pool Contents

[email protected] (David Wagner) writes:

> Well, if you want to talk about really high-value keys like the scenarios
> you mention, you probably shouldn't be using /dev/random, either; you
> should be using a hardware security module with a built-in FIPS certified
> hardware random number source.  

Is there such a thing?  "Annex C: Approved Random Number
Generators for FIPS PUB 140-2, Security Requirements for
Cryptographic Modules", or at least the version of it I was able
to find with Google in a few seconds, simply states:

        There are no FIPS Approved nondeterministic random number
        generators.
-- 
"Welcome to the Slippery Slope. Here is your handbasket.
 Say, can you work 70 hours this week?"
--Ron Mansolino

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Follow-Ups:
- Re: Entropy Pool Contents
  - From: Henrique de Moraes Holschuh <[email protected]>

References:
- Entropy Pool Contents
  - From: Gunter Ohrner <[email protected]>
- Re: Entropy Pool Contents
  - From: Phillip Susi <[email protected]>
- Re: Entropy Pool Contents
  - From: [email protected] (David Wagner)
- Re: Entropy Pool Contents
  - From: Kyle Moffett <[email protected]>
- Re: Entropy Pool Contents
  - From: [email protected] (David Wagner)

Prev by Date: Re: [PATCH 3/3] x86: when acpi_noirq is set, use mptable instead of MADT
Next by Date: Re: Reserving a fixed physical address page of RAM.
Previous by thread: Re: Entropy Pool Contents
Next by thread: Re: Entropy Pool Contents
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]