[Cryptography] OpenSSL and random

Viktor Dukhovni cryptography at dukhovni.org
Mon Nov 28 12:02:25 EST 2016

> On Nov 28, 2016, at 8:06 AM, Salz, Rich <rsalz at akamai.com> wrote:
> Ian: Use /dev/urandom
> Bill: Use /dev/random

Go with Ian:


Mind you, after seeding from /dev/urandom (or as available the
"getentropy" syscalls on new-enough OpenBSD and Linux), we still
need a reseedable CSPRNG, and for that I think Keccak has a mode
that looks like a good candidate...

> So I have a new basic theory about randomness: ask N crypto folks and get at least N+1 opinions.

Yes, the topic of random number generation does not appear to be
one on which you'll find broad consensus...


More information about the cryptography mailing list