3.2.2 Random Number Generator (RNG)
The ECC204-TFLXAUTH device includes a high-quality cryptographic True Random Number Generator (TRNG) implemented according to the NIST standards SP800-90A/B/C.
The NRBG output is
evaluated using the methods in NIST SP 800-90B. The DRBG is designed using the SHA-256 variant
specified within NIST SP 800-90A. The combination of the two creates the TRNG output following
the methods specified in NIST SP 800-90C:
- NIST SP800-90A: Certified as part of the NIST Cryptographic Algorithm Validation Program (CAVP) certification process (Hash DRBG CAVP Certification)
- NIST SP 800-90B: Certified as part of the NIST Entropy Source Validation (ESV) process (ESV Certificate #E194 - Operating Environment 59V02 A2)
- NIST SP 800-90C: Currently a draft specification with implementation recommendations and does not have a specific certification procedure