[Cryptography] Random numbers only once

Joachim Strömbergson Joachim at Strombergson.com
Wed Feb 5 05:24:06 EST 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

ALoha!

ianG wrote:
> I say more here: 
> http://iang.org/ssl/hard_truths_hard_random_numbers.html

A pretty good writeup, thanks! A couple of comments though

 - (nitpick) Dark blue links on black background are _really_ hard to read.

 - In the mixer section you write about push vs pull, i.e. how entropy
enters the mixer. But you don't write anything about how the mixing is
actually done. concatenation, XOR-ing, some sort of hashing etc are
possible methods. Some better than others.

- - Also when talking about mixing entropy from multiple sources you might
want to write something about how to handle entropy from sources with
wildly different capacities. Mixing entropy from RdRand with keyboard or
mouse actions for example.


- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBCAAGBQJS8hFGAAoJEF3cfFQkIuyNTyUP/AypNro2lvVECEvloc3raBoV
/TEEKyYLgEVxm2VDnMDA5T/L3NIxrgAK+ZTzOUhImRKCS+FP96/Zs1usD+Tv5XhJ
iF3kXZX3ermuOhRhYNhuJ6FNWfW9YdpzxY+QNFzhMB7JS4Z1Z3ERGbVbN/ONJhQR
nXzIMEnHqvSTlgREC5QjysesRQibEhgL6138v9NCdk0D9WjHr1os6zzfK0esJwo0
rD9psm2KnZhGiMB2awYnGcko7cC2GMqPLHly6eXNu2fE7G22tFJlCNwWwvqM5BFq
ZwTLSEazfEKIMbwIXN4Vkgei3MuLJGqRBoo3ILl2T57D9O7swt4I6ThhkfpzkqCZ
pwi19pbk7TQ+OdH2Gqj/crGuzpIrlGyzU6RiW7mNaRXxtAx+IwzG/Hlec08tGsRA
POAntA1r16msB4tScXfUg5LievB6ZspeUHWfTu75Du77JmjYWC1YUFY93x3EcEK8
w9Xi4WXAU+Gl4+VC1ouZUcLOO04X5JzJCBRn9mD09eOL6m004NvMJ/c6X8hNF6Yu
KwKcbZjXQ8s8lxEBLkvzju+frCB0G4NpqjUW49cOBY7zNxybUKinblGnF5cp/5on
kD+H9FsNrFKwapSmFIAYNEYufH2+GK+mvMSBuRNRvTHsCb4YED76poQMPpCOGKFX
bRJu+hJOK1S48CecRSMD
=j9d9
-----END PGP SIGNATURE-----


More information about the cryptography mailing list