I won't bother you more on this topic but I honestly do not think
that there will be any progress worth mentioning (particularly on
the fragmented OSS side) until Intel comes out with a open version
of:
http://ipt.intel.com
I hope to make it easier for Intel by doing things in the opposite way,
e
On 07/27/2012 12:34 PM, Vasantharangan, Shruthi M. wrote:
We would like to use a randomNumberGenerator on "Red Hat Enterprise Linux Server
release 5.6 (Tikanga)" which is FIPS140-2 level2 certified. We have
nss-3.13.5-4.el5_8.i386.rpm (along with nss-tools and nspr) package installed on our
s
We would like to use a randomNumberGenerator on "Red Hat Enterprise Linux
Server release 5.6 (Tikanga)" which is FIPS140-2 level2 certified. We have
nss-3.13.5-4.el5_8.i386.rpm (along with nss-tools and nspr) package installed
on our servers. Can we use DRBG with RHEL 5.6?
Thanks
Shruthi
--
On 07/25/2012 02:32 PM, Vasantharangan, Shruthi M. wrote:
Hi,
How can run drbg test vectors provided by NIST to validate the response of
the random output for the various algorithms on NSS.
Rgds
Shruthi
Softoken 3.11.4 uses the DSA RNG and not the DRBG (that would be RHEL 6
and Softoken
On 07/25/2012 02:00 PM, Vasantharangan, Shruthi M. wrote:
HI,
I am using the NSS Cryptographic Module document to use the random number
generator for FIPS2 random number. If I use the FC_GetFunctionList fpr
PK11_GenerateRandom and initialise with slotid as 0, then is the Mode set to
FI
On 07/24/2012 11:19 AM, Vasantharangan, Shruthi M. wrote:
Hi,
We require a random number generator that's FIPS2 complaint on RedHat Linux
5.6.
In the linux rpm for NSS nss-3.12.8-1.el5. I find random generation api's in
pkcs11f.h.
If I use them can I be sure that the random data generat
On 07/27/2012 10:25 AM, David Woodhouse wrote:
On Fri, 2012-07-27 at 10:08 -0700, Robert Relyea wrote:
Oh, so you switch between sql:/etc/pki/nssdb and sql:$HOME/.pki/nssdb=20
depending on whether libnsssysinit.so exists.
It's worse than that. It's not just whether libnsssysinit.so *exists*,
bu
Unifying trust and even more private key storage has reasonable
solutions in other operating systems. These solutions make sense
for app-developers to use.
I don't think that a quick fix can compensate for the more over-arching
issue which really is a lack of product management. Fixing JDK would
Hi,
I executed the fipstest with HASH DRBG for SHA-256, as in the
drbgtestvectors list from NIST (Please see below link). The returned bits are
not matching the NIST expected bits. Please see the request file below and let
me know if there are any other request files/settings specific
Hi,
How can run drbg test vectors provided by NIST to validate the response of
the random output for the various algorithms on NSS.
Rgds
Shruthi
From: Vasantharangan, Shruthi M.
Sent: Wednesday, 25 July, 2012 5:01 PM
To: dev-tech-crypto@lists.mozilla.org
Subject: RandomNumberGenerator that is
HI,
I am using the NSS Cryptographic Module document to use the random number
generator for FIPS2 random number. If I use the FC_GetFunctionList fpr
PK11_GenerateRandom and initialise with slotid as 0, then is the Mode set to
FIPS level2 ?
NSS Cryptographic Module
Version 3.11.4
FIPS 140
Hi,
I require to do a fips test with the request response files for the drbg
test vector validation on nss-3.13.5. I have built and installed the nss and
the sqlite without errors. However running fipstest fails with the below error
message. Can anyone please tell me if any setting is missin
Hi,
We require a random number generator that's FIPS2 complaint on RedHat Linux
5.6.
In the linux rpm for NSS nss-3.12.8-1.el5. I find random generation api's in
pkcs11f.h.
If I use them can I be sure that the random data generated is FIPS2 complaint?
What is the api to set NSS in FIPS Mode
On Fri, 2012-07-27 at 10:08 -0700, Robert Relyea wrote:
> Oh, so you switch between sql:/etc/pki/nssdb and sql:$HOME/.pki/nssdb=20
> depending on whether libnsssysinit.so exists.
It's worse than that. It's not just whether libnsssysinit.so *exists*,
but whether it's actually loaded by a line in /e
So what I actually want is
- To fix the API to the NSS system database so it isn't insane.
Do you have any suggestions on how the API would be changes. One thing=20
I'm always fighting is providing an API for apps without breaking=20
existing apps.
Well, *not* having to grub around for 'lib
On Fri, 2012-07-27 at 10:53 +0200, Anders Rundgren wrote:
> I think you need to take a step back and consider which
> market and user-base you are targeting.
No, I believe that's been clear from the beginning. Apologies if I
didn't make it explicit enough.
> Linux on the desktop? Why bother with
I think you need to take a step back and consider which
market and user-base you are targeting. Linux on the
desktop? Why bother with that? Linux servers? Well,
*that* could be interesting. Unfortunately it doesn't
help much since most servers run JBoss etc so it is
actually more a JDK problem.
On Thu, 2012-07-26 at 14:13 -0700, Robert Relyea wrote:
> Error verifying signature
> parse error
> --ms050908010406000106010405
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
> Content-Transfer-Encoding: quoted-printable
(Want to investigate that off-list, or is it expe
18 matches
Mail list logo
