SP800-90A actually includes several DRBG algorithms, and any given product is likely to only use one of them.
So Marquess's statement that SP800-90A is basically mandatory (most non-trivial uses of cryptography require a DRBG at some point and 140-2 Annex C allows the use of the SP800-90A DRBGs) shouldn't be taken to imply that Dual EC DRBG is also mandatory as one could chose to implement another algorithm from that SP.
Generally I think either CTR DRBG or HMAC DRBG from SP800-90A are more likely to be chosen than Dual EC DRBG depending upon whether the application also needs a hash or block cipher whose implementation can be used as a building block for the DRBG implementation.
Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds