Re: How to use nonce in DRBG functions.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Am Sonntag, 1. September 2019, 20:52:24 CEST schrieb Bhat, Jayalakshmi 
Manjunath:

Hi Jayalakshmi,

> Hi All,
> 
> I am trying to implement DRBG CAVS test harness function for Linux Kernel
> crypto DRBG with the following requirements. 1.	Derivate function is
> enabled.
> 	2.	prediction resistance is not enabled
> 	3.	Entropy input length is 256
> 	4.	Nonce length is 256
> 	5.	Mode is AES-CTR 256
> 	6.	Reseed is supported
> 	7.	Intended use generate.
> 
> Thus inputs are
> 	1.	Entropy Input
> 	2.	Nonce
> 	3.	Entropy Additional Input
> 
> Flow goes something like below
> 	drbg_string_fill(&testentropy, test->entropy, test->entropylen);
> 	drbg_string_fill(&pers, test->pers, test->perslen);
> 	ret = crypto_drbg_reset_test(drng, &pers, &test_data);
> 	drbg_string_fill(&addtl, test->addtla, test->addtllen);
> 	ret = crypto_drbg_get_bytes_addtl(drng, buf, test->expectedlen, 
&addtl);
> 
> I am not finding a way to input nonce. Please can anyone tell me how to
> input nonce.

The entropy string for the DRBG is the CAVS entropy concatenated with the 
nonce as defined in SP800-90A for each instantiate process of each DRBG.
> 
> Regards,
> Jayalakshmi



Ciao
Stephan





[Index of Archives]     [Kernel]     [Gnu Classpath]     [Gnu Crypto]     [DM Crypt]     [Netfilter]     [Bugtraq]

  Powered by Linux