[147069] in cryptography@c2.net mail archive
Re: [Cryptography] Radioactive random numbers
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Thu Sep 12 11:00:53 2013
X-Original-To: cryptography@metzdowd.com
Date: Thu, 12 Sep 2013 11:00:47 -0400
From: "Perry E. Metzger" <perry@piermont.com>
To: Tony Arcieri <bascule@gmail.com>
In-Reply-To: <CAHOTMVL6wA8YJqfuo2bOB6aKgGNm5OSZvFzagPmkmcGcm1JtsQ@mail.gmail.com>
Cc: Cryptography List <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On Wed, 11 Sep 2013 17:06:00 -0700 Tony Arcieri <bascule@gmail.com>
wrote:
> It seems like Intel's approach of using thermal noise is fairly
> sound. Is there any reason why it isn't more widely adopted?
Actually, I think things like this mostly have been missing
because manufacturers didn't understand they were important. Even
the Raspberry Pi now has an SoC with a hardware RNG.
In addition to getting CPU makers to always include such things,
however, a second vital problem is how to gain trust that such RNGs
are good -- both that a particular unit isn't subject to a hardware
defect and that the design wasn't sabotaged. That's harder to do.
Perry
--
Perry E. Metzger perry@piermont.com
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography