[Cryptography] /dev/random is not robust

dj at deadhat.com dj at deadhat.com
Thu Oct 17 16:56:31 EDT 2013


> On 10/17/2013 08:32 AM, Adam Back wrote:

>
> Should RNGs attempt to detect uninitialized states and refuse to run?
>
>

Yes. So they don't release low entropy numbers.

But hardware should provide a firehose throughput entropy source from
power on so the RNG is always initialized to full entropy and won't block
regardless of the load on the random number service.




More information about the cryptography mailing list