Jim Rees said on Dec. 23:
>The "get challenge" apdu, 0x84, normally returns a random number. I once
>collected 1600000 bytes from a Payflex P1 card and ran some simple
>tests. I don't know how the rng is implemented in Payflex, and it's
>probably a highly guarded secret.
1.6M of random bits really isn't enough to judge the quality of an RNG
in my opinion.
For serious study of such bits, I would suggest something on the order
of 10M. The Die Hard testing package requires 11M of data, and runs
an extensive battery of tests.
--
Michael Graffam ([EMAIL PROTECTED])
***************************************************************
Linux Smart Card Developers - M.U.S.C.L.E.
(Movement for the Use of Smart Cards in a Linux Environment)
http://www.linuxnet.com/smartcard/index.html
***************************************************************
