2014 FIPS disallows ANSI X9.31

Jakob Breier j.breier at gmx.de
Thu Jan 16 23:17:30 CET 2014


On 16.01.2014 18:21, John Masinter wrote:
> The ANSI X 9.31 RNG should be replaced with FIPS recommended SP800-90
> DRBG.
…
> Or is there any option to build GnuPG with OpenSSL? (Are you laughing
> now?:)

You would not want to use OpenSSL. Their Dual_EC_DRBG implementation is
horribly broken and will crash or stall your program. See
https://lwn.net/Articles/578375/ for more details.

Regards,
Jakob Breier



More information about the Gcrypt-devel mailing list