Re: Intel 810 Random Number Generator

From: Gregory Maxwell (greg@linuxpower.cx)
Date: Mon Jan 24 2000 - 15:18:43 EST

Next message: Derek Glidden: "another Compaq 8500 question"
Previous message: Khimenko Victor: "Re: 2.2.10-14 i686 SMP: IDE RAID-5 array hangs on mount"
In reply to: Alan Cox: "Re: Intel 810 Random Number Generator"
Next in thread: Sandy Harris: "Re: Intel 810 Random Number Generator"
Reply: Sandy Harris: "Re: Intel 810 Random Number Generator"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 24 Jan 2000, Alan Cox wrote:

> > > If the RNG provides a lot more data than other entropy sources, it can
> > > throw things out of whack.
> >
> > Thats beyond paranoia.
> > The source mentions a malicious attacker, but if such an attacker has
> > control of the thermal generator in your system you have bigger problems.
>
> Not neccessarily. Nobody knows if the NSA got at the Intel RNG, I imagine
> even Intel can't be 100% sure of that. Paranoia in such cases is good for
> the health

In this case, we can play the paranoid and just mix it in and not
increase the entropy count.

If the current 'twisted crc32 mixer thingy' doesn't provide that your
entropy can never go down even with NSA input data, then we need ones that
does.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Derek Glidden: "another Compaq 8500 question"
Previous message: Khimenko Victor: "Re: 2.2.10-14 i686 SMP: IDE RAID-5 array hangs on mount"
In reply to: Alan Cox: "Re: Intel 810 Random Number Generator"
Next in thread: Sandy Harris: "Re: Intel 810 Random Number Generator"
Reply: Sandy Harris: "Re: Intel 810 Random Number Generator"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Jan 31 2000 - 21:00:13 EST