[Cryptography] Fwd: [IP] 'We cannot trust' Intel and Via's chip-based crypto, FreeBSD developers say
James A. Donald
jamesd at echeque.com
Fri Dec 20 03:09:19 EST 2013
If you use RDRAND, your random numbers are secure against everyone
except the five eyes.
If you mix RDRAND with a large random number set at install time, plus
the time, you are probably secure against the five eyes as well.
If any one adversary lacks access to every one of your sources of
randomness, your randoms are good against that adversary.
So, consider: Powerful adversaries, Nigerian adversaries, far
adversaries, near adversaries. A source of randomness only has to be
good against one of them to be useful.
More information about the cryptography
mailing list