Subject: Re: Hardware RNG support for EM64T systems
To: Sam Leffler <sam@errno.com>
From: Brett Lymn <blymn@baesystems.com.au>
List: tech-security
Date: 02/20/2006 14:08:43
On Sun, Feb 19, 2006 at 09:44:13AM -0800, Sam Leffler wrote:
> 
> The thing about running a FIPS test is news to me :)
>

Regardless, it would be a Good Idea (tm) to perform some of the FIPS
tests to ensure the RNG hardware at least looks functional rather than
accepting a continuous stream of 0's (or 1's) as being "random".  I
don't mean do this continuously but from memory there are some startup
tests defined by FIPS that are designed to detect malfunctioning
RNG's.

-- 
Brett Lymn