On Mon, Jul 12, 2010 at 03:37:45PM -0400, Paul Wouters wrote:

On Mon, 12 Jul 2010, Eric Murray wrote:

...

Then there's FIPS- current 140 doesn't have a provision for HW RNG. They certify software RNG only, presumeably because proving a HW RNG to be random enough is very difficult. So what's probably the primary market (companies who want to meet FIPS) isn't available.

So you can do HWRNG -> SWRNG -> Fips ?

Last FIPS cert I did (140-2, a couple years ago), it was SWRNG only. X9.62 or FIPS 186 or X9.31 or SP 800-90. I couldn't even use a HW RNG for the seed. /dev/random was acceptable.

Also, the VIA PadLock already ships with an HWRNG on die. It's been shipping for years.

True that. Eric