[openssl-dev] DRBG entropy
Leon Brits
leonb at parsec.co.za
Fri Jul 29 07:36:20 UTC 2016
Paul,
> I probably should have mentioned this in my earlier message, but the
> exponential example is valid for the NSIT SP800-90B non-IID tests too:
> 5.74889 bits per byte of assessed entropy. Again about as good a result
> as the tests will ever produce given the ceiling of six on the output.
> There is still zero actual entropy in the data. The tests have massively
> over estimated.
I am just trying to get our device validated, and am not in a position to discuss the Labs test methodologies or the intrinsic math behind it. I thought that by using the NDRNG chip the entropy would not be a problem. Should have done my homework better.
Thanks for your time
LJB
More information about the openssl-dev
mailing list