[147965] in cryptography@c2.net mail archive
Re: [Cryptography] What's a Plausible Attack On Random Number
daemon@ATHENA.MIT.EDU (Watson Ladd)
Sat Nov 2 12:25:52 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <52742DA0.3090701@panix.com>
Date: Fri, 1 Nov 2013 22:22:17 -0700
From: Watson Ladd <watsonbladd@gmail.com>
To: Albert Lunde <atlunde@panix.com>
Cc: "cryptography@metzdowd.com List" <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On Fri, Nov 1, 2013 at 3:39 PM, Albert Lunde <atlunde@panix.com> wrote:
> As a postscript to this thread, I'd note the existence of these older open
> source random number generation projects as an example of prior art:
>
> http://egd.sourceforge.net/
>
> http://prngd.sourceforge.net/
>
> The last revision of the prngd code is 2007. So while this is inspired by
> some good ideas it's not being actively developed today.
>
> They were developed to support Unix/Linux systems which didn't have a
> /dev/random /dev/urandom interface (a diminishing audience).
>
> They use the output of various commands to collect entropy, in a
> configurable-sized pool.
>
> I've used prngd in a previous context where I was administering a web
> server.
>
> A feature is that there is a trivial protocol for requesting random bytes in
> clear text over a TCP socket.
>
> I used that protocol to ship some random bytes from the primary web server
> via private fiber to the hot spare at another location which had little
> traffic.
>
> But our only use of random numbers there was for SSH, neither server used
> HTTPS.
I'ld like to note that Ivy Bridge includes an on-chip random number
generator, VIA has made chips with that support before,
and various embedded devices have also had random number generators.
What's wrong with just using them?
This whole conversation is as pointless as discussing the best way to
use a crowbar to open a can when a can opener is
sitting right next to the crowbar.
>
> --
> Albert Lunde albert-lunde@northwestern.edu
> atlunde@panix.com (address for personal mail)
>
> _______________________________________________
> The cryptography mailing list
> cryptography@metzdowd.com
> http://www.metzdowd.com/mailman/listinfo/cryptography
Sincerely,
Watson
--
"Those who would give up Essential Liberty to purchase a little
Temporary Safety deserve neither Liberty nor Safety."
-- Benjamin Franklin
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography