[Cryptography] Fwd: [IP] 'We cannot trust' Intel and Via's chip-based crypto, FreeBSD developers say

James A. Donald jamesd at echeque.com
Fri Dec 20 03:09:19 EST 2013


If you use RDRAND, your random numbers are secure against everyone 
except the five eyes.

If you mix RDRAND with a large random number set at install time, plus 
the time, you are probably secure against the five eyes as well.

If any one adversary lacks access to every one of your sources of 
randomness, your randoms are good against that adversary.

So, consider:  Powerful adversaries, Nigerian adversaries, far 
adversaries, near adversaries.   A source of randomness only has to be 
good against one of them to be useful.


More information about the cryptography mailing list