[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Crypto Secure Random Numbers

To: Artur Grabowski <art@blahonga.org>
Subject: Re: Crypto Secure Random Numbers
From: Andrew Basterfield <list@lostgeneration.freeserve.co.uk>
Date: Thu, 7 Feb 2002 12:22:25 +0000
Cc: bugs@openbsd.org
References: <Pine.LNX.4.21.0202061316380.22559-100000@wizardsworks.org> <87vgdaq9er.fsf@kaka.blahonga.org>

On 07 Feb 2002 04:05:00 +0100
Artur Grabowski <art@blahonga.org> wrote:
> > Theory of operation:
> >   When gettimeofday(2) is called, the microseconds value returned is
unknown> > and unpredictable. It is therefore a source of entropy. By
introducing a

> This time there is not even a need to explain the theory of why your new
> randomness collection method sucks. Simple tests show that it's
completly> useless.

If that random function was called at fixed time intervals (eg every
microsecond) the output would not be at all random. The time imterval does
not have to be exactly 1 microsecond - any fixed interval would create a
non-random interference pattern in the output data as the frequency of the
unix clock 'beats' with the frequency that routine is called (sorry I'm an
elec eng it's the way I visualise it). This is less noticable on a system
with variable load & hence variable latency but consider when the SSH keys
are generated at 1st boot and there are no other processes active?

Leave that stuff to the experts (or learn enough to become one yourself).

A. Basterfield

References:
- Crypto Secure Random Numbers
  - From: <robin@wizardsworks.org>
- Re: Crypto Secure Random Numbers
  - From: Artur Grabowski <art@blahonga.org>

Prev by Date: user/2380: [PATCH] vintage tr(1) -c "" bug (FreeBSD PR 34663)
Next by Date: documentation/2381: old make example in bsd.port.mk man page
Prev by thread: Re: Crypto Secure Random Numbers
Next by thread: 3.0 macppc: panic trap 200 on a G4 PCI 350 MHz.
Index(es):
- Date
- Thread