[Cryptography] Apple's Early Random PRNG

tytso at mit.edu tytso at mit.edu
Mon Mar 17 17:16:03 EDT 2014


On Mon, Mar 17, 2014 at 08:48:37PM -0000, dj at deadhat.com wrote:
> >
> > Early in the boot process is a difficult but an interesting point of
> > vulnerability.
> 
> RdRand works from the first instruction executed. This is a pretty basic
> requirement for a system RNG. You should expect your device vendors to
> meet that requirement.

If anyone has any suggestions about how to influence ARM SOC vendors
to provide something liek RDRAND, short of compromising photos from
web cams of company execs provided courtesy of GCHQ :-), I'm sure lots
of people would appreciate any ideas....

					- Ted


More information about the cryptography mailing list