To get an entropy source approved under FIPS 140-3 there are two options:
- ENT (P) or ENT (NP) entry on the FIPS module validation certificate (until October 1st, 2022)
- ESV certificate awarded by NIST’s Entropy Source Validation Testing (ESVT)
This blog post will address these entropy validation requirements in FIPS 140-3. We’ll provide details on the differences between the “ENT” validation certificate entry and Entropy Source Validation or “ESV” certificates. Relevant NIST Special Publications (SPs), important Implementation Guidance (IG) and links to templates and other important references will also be provided.
Read More