Re: [PATCH] random: addu a config option to trust the CPU's hwrng

From: Sandy Harris
Date: Wed Jul 18 2018 - 16:22:40 EST

Next message: Pavel Machek: "Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption"
Previous message: Cong Wang: "Re: [PATCH] perf/core: fix a possible deadlock scenario"
In reply to: Theodore Y. Ts'o: "Re: [PATCH] random: addu a config option to trust the CPU's hwrng"
Next in thread: Theodore Y. Ts'o: "Re: [PATCH] random: addu a config option to trust the CPU's hwrng"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Theodore Y. Ts'o <tytso@xxxxxxx> wrote:

> For those people who are super paranoid and want a "true
> random number generator" (and the meaning of that is hazy) because a
> CRNG is Not Enough, my recommendation these days is that they get
> something like an open hardware RNG solution, such as ChaosKey from
> Altus Metrum[1].
>
> [1] https://altusmetrum.org/ChaosKey/

Yes & one of those can also solve any difficulty with random(4) at
startup. Another alternative, perhaps easier on some systems, is
Denker's Turbid trng:
https://www.av8n.com/turbid/paper/turbid.htm

Next message: Pavel Machek: "Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption"
Previous message: Cong Wang: "Re: [PATCH] perf/core: fix a possible deadlock scenario"
In reply to: Theodore Y. Ts'o: "Re: [PATCH] random: addu a config option to trust the CPU's hwrng"
Next in thread: Theodore Y. Ts'o: "Re: [PATCH] random: addu a config option to trust the CPU's hwrng"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]