On Wed, Jul 16, 2008 at 08:45:33PM +0800, Herbert Xu wrote: > On Thu, Jul 03, 2008 at 04:21:02PM -0400, Neil Horman wrote: > > > > + * See http://csrc.nist.gov/groups/STM/cavp/documents/rng/931rngext.pdf > > + * for implementation details > > BTW, any reason why counter mode is used? This document specifies > simple AES only, with no modes of operations. > I think I have an irc log somewhere where I thought we discussed this, and decided that counter mode allowed us a larger period in the random number stream, but you're correct, simple AES mode is called for in the specification. I suppose its better to do whats written down there rather than do what makes intuitive sense, I'll change that. Regards Neil > Thanks, > -- > Visit Openswan at http://www.openswan.org/ > Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx> > Home Page: http://gondor.apana.org.au/~herbert/ > PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- /**************************************************** * Neil Horman <nhorman@xxxxxxxxxxxxx> * Software Engineer, Red Hat ****************************************************/ -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
