[Cryptography] Entropy Needed for SSH Keys?
Jerry Leichter
leichter at lrw.com
Mon May 23 22:44:18 EDT 2016
>> But, honestly, I sincerely question the idea that you need random
>> numbers "early" in the boot process.
>
> The caveat here is kernel ASLR. The address space is setup when the
> decompressor is run. It either needs an architecture-specific function
> like RDRAND/RDSEED, or to be handed a seed by the bootloader.
>
> There's also the whole suite of kernel self-protection mechanisms like
> stack canaries and so on.
Let's think this through a bit. Kernel ASLR, stack canaries, and so on, are there to protect against external code that finds holes. Early during boot, *there's no external code running*. We're before network initialization, so there's nothing coming in from the network links. Basically, if an attacker has managed to get code running at this point during boot, you don't have much hope anyway.
So it seems to me you want to address a different issue: Not how do I get enough randomness to set up kernel ASLR and related mechanisms early in boot, but how to I *put off* setting up kernel ASLR and related mechanisms until I have a usable source of randomness?
-- Jerry
More information about the cryptography
mailing list