[Cryptography] OpenSSL and random
Viktor Dukhovni
cryptography at dukhovni.org
Mon Nov 28 12:02:25 EST 2016
> On Nov 28, 2016, at 8:06 AM, Salz, Rich <rsalz at akamai.com> wrote:
>
> Ian: Use /dev/urandom
> Bill: Use /dev/random
Go with Ian:
http://www.2uo.de/myths-about-urandom/
Mind you, after seeding from /dev/urandom (or as available the
"getentropy" syscalls on new-enough OpenBSD and Linux), we still
need a reseedable CSPRNG, and for that I think Keccak has a mode
that looks like a good candidate...
> So I have a new basic theory about randomness: ask N crypto folks and get at least N+1 opinions.
Yes, the topic of random number generation does not appear to be
one on which you'll find broad consensus...
--
Viktor.
More information about the cryptography
mailing list