[Cryptography] random numbers on virtual machines?
Jerry Leichter
leichter at lrw.com
Mon Jan 26 13:57:28 EST 2015
On Jan 26, 2015, at 9:57 AM, Henry Baker <hbaker1 at pipeline.com> wrote:
> So what's the best practice for random numbers on a virtual machine.
The only thing that actually works is to "pierce the virtualization" and give the VM access to true random number generation on the host (assuming *it* has a decent source of random numbers). This is pretty universally available in VMM's these days, and modern guest OS's make use of the facilities provided.
No, getting this right isn't trivial. And it introduces new potential attacks.
-- Jerry
More information about the cryptography
mailing list