Recent media reports have speculated about the safety and reliability of the Dual_EC_DRBG pseudo-random number generator (PRNG). (http://en.wikipedia.org/wiki/Dual_EC_DRBG) The Notes/Domino product family does not use and has never used the Dual_EC_DRBG PRNG.

Notes/Domino does use RSA Data Security's BSAFE cryptographic library in a number of situations, but when doing so it always specifies AI_MD5Random for the PRNG algorithm instead of accepting the default algorithm.

If you are reading this article and are still using RSA keys less than 1024 bits, we highly recommend using the User Key Rollover, Server Key Rollover, and Certifier Key Rollover features to upgrade your environment to at least the currently recommended key strengths. You aren't still using decades-old computers, so please don't use decades-old cryptographic keys.