[Cryptech Tech] Randomness testing in FIDO

Leif Johansson leifj at sunet.se
Tue Jan 13 09:54:21 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 01/13/2015 09:13 AM, Joachim Strömbergson wrote:
> Aloha!
> 
> We talked about the need for actually getting down and dirty w
> respect to information about randomness testing. What methods and
> standards are available, what tools are available, what to use when
> and how to interpret the results etc.
> 
> I noted that the FIDO alliance in the UAF Auth Commands spec [1]
> points to a document I haven't seen before.
> 
> http://www.jscoron.fr/publications/universal.pdf

I believe the chair for the fido technical groups is on this list and
could elaborate...

> 
> I'm surprised they've pointed to this specific document, not least
> since I can't find a readily available implementation which makes
> it harder for anybody implementing the FIDO standard to test the
> compliance of the standard requirements.
> 
> 
> [1] 
> http://fidoalliance.org/specs/fido-uaf-v1.0-ps-20141208/fido-uaf-authnr-cmds-v1.0-ps-20141208.pdf
>
>  _______________________________________________ Tech mailing list 
> Tech at cryptech.is https://lists.cryptech.is/listinfo/tech
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEARECAAYFAlS0600ACgkQ8Jx8FtbMZncWOwCcDgFuuezqxsx3o2eQhTZysTN/
rKwAn2PO81BlvkZYJNoByu/ZofyrhfLY
=KHqF
-----END PGP SIGNATURE-----



More information about the Tech mailing list