Re: /dev/random: really secure?

From: Jamie Lokier (lk@tantalophile.demon.co.uk)
Date: Wed Dec 20 2000 - 12:58:07 EST

Next message: Michael H. Warfield: "Re: iptables: "stateful inspection?""
Previous message: Thomas Sailer: "Re: 2.2.19/2.4.0-test and usbdevfs"
In reply to: Bernd Eckenfels: "Re: /dev/random: really secure?"
Next in thread: Bernd Eckenfels: "Re: /dev/random: really secure?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Bernd Eckenfels wrote:
> In article <20001218213801.A19903@pcep-jamie.cern.ch> you wrote:
> > A potential weakness. The entropy estimator can be manipulated by
> > feeding data which looks random to the estimator, but which is in fact
> > not random at all.
>
> That's why feeding randomness is a priveledgedoperation.

I was referring to randomness influenced externally, e.g. network
packet timing, hard disk timing by choice of which http requests, etc.

-- Jamie
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michael H. Warfield: "Re: iptables: "stateful inspection?""
Previous message: Thomas Sailer: "Re: 2.2.19/2.4.0-test and usbdevfs"
In reply to: Bernd Eckenfels: "Re: /dev/random: really secure?"
Next in thread: Bernd Eckenfels: "Re: /dev/random: really secure?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Dec 23 2000 - 21:00:27 EST