|
|
Log in / Subscribe / Register

3.17 merge window part 1

3.17 merge window part 1

Posted Aug 7, 2014 9:39 UTC (Thu) by Thue (guest, #14277)
Parent article: 3.17 merge window part 1

> The cryptographic subsystem has gained support for the NIST-specified SP800-90A deterministic random bit generator.

Yes - finally we get Dual_EC_DRBG in the kernel!

to post comments

3.17 merge window part 1

Posted Aug 7, 2014 10:27 UTC (Thu) by intgr (subscriber, #39733) [Link]

Not really. SP800-90A defines 4 different random number generators, only one of them is the backdoored one. The other 3 have been implemented in Linux.

See https://git.kernel.org/cgit/linux/kernel/git/torvalds/lin...
> All three viable DRBGs defined in the standard are implemented:
> * HMAC: This is the leanest DRBG and compiled per default
> * Hash: The more complex DRBG can be enabled at compile time
> * CTR: The most complex DRBG can also be enabled at compile time


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds