If you need a working CTR_DRBG implementation compliant with SP 800-90, I can recommend Henric Jungheim's code found at http://henric.info/random/ ; attached is a quick adaptation for OpenSSL. It passes NIST's test vectors (http://csrc.nist.gov/groups/STM/cavp/documents/drbg/DRBGTestVectors.zip).
-----Original Message----- From: owner-openssl-...@openssl.org [mailto:owner-openssl-...@openssl.org] On Behalf Of Dr. Stephen Henson Sent: Wednesday, January 12, 2011 00:31 To: openssl-dev@openssl.org Subject: Re: New FIPS 140-2 validation underway On Tue, Jan 11, 2011, Paul Suhler wrote: > > > ========================= > > Are you aware of the speed complaints and speculations about a trapdoor > in Dual_EC_DRBG? > > http://en.wikipedia.org/wiki/Dual_EC_DRBG > Yes, I'm aware of them. The DRBG will most likely be cipher or hash based, not EC based. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org ________________________________ This email and any files transmitted with it are confidential material. They are intended solely for the use of the designated individual or entity to whom they are addressed. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, use, distribution or copying of this communication is strictly prohibited and may be unlawful. If you have received this email in error please immediately notify the sender and delete or destroy any copy of this message
sp80090.diff
Description: sp80090.diff