[Cryptography] cheap sources of entropy
Krisztián Pintér
pinterkr at gmail.com
Wed Jan 29 12:08:42 EST 2014
John Kelsey (at Wednesday, January 29, 2014, 3:09:48 AM):
> Unfortunately, pretty much all real-world systems have some time
> (often very soon after their first startup) when they have to
> generate some high value key.
> Fortuna is an elegant and clever solution to the wrong problem.
except my remark was not about the topic in general, but how to reseed
a prng. making sure there is enough entropy is not the job of the OS,
but of the hardware and of the usage modes of the softwares installed.
the OS could not be tasked to collect enough entropy, as in most cases
this is either impossible or at least impossible to be sure of.
fortuna is a clever solution for the exact problem i proposed it for:
dealing with enough, but uncertain amount of entropy flowing in. it
solves the problem of robust reseeding.
More information about the cryptography
mailing list