CPRNGs are still an issue.

Damien Miller djm at mindrot.org
Thu Dec 11 20:42:57 EST 2008


On Thu, 11 Dec 2008, James A. Donald wrote:

> If one uses a higher resolution counter - sub
> microsecond - and times multiple disk accesses, one gets
> true physical randomness, since disk access times are
> effected by turbulence, which is physically true
> random.

Until someone runs your software on a SSD instead of a HDD. Oops.

-d

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list