Re: [PATCH] random, Add user configurable get_bytes_random()

From: Theodore Ts'o
Date: Thu Sep 05 2013 - 15:49:15 EST

Next message: Zuckerman, Boris: "RE: RFC Block Layer Extensions to Support NV-DIMMs"
Previous message: Luck, Tony: "RE: [PATCH] lockref: remove cpu_relax() again"
In reply to: Theodore Ts'o: "Re: [PATCH] random, Add user configurable get_bytes_random()"
Next in thread: Prarit Bhargava: "Re: [PATCH] random, Add user configurable get_bytes_random()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

BTW, note the following article, published today:

http://www.nytimes.com/2013/09/06/us/nsa-foils-much-internet-encryption.html?pagewanted=all

"By this year, the Sigint Enabling Project had found ways inside some
of the encryption chips that scramble information for businesses and
governments, either by working with chipmakers to insert back doors...."

Relying solely and blindly on a magic hardware random number generator
which is sealed inside a CPU chip and which is impossible to audit is
a ***BAD*** idea.

- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Zuckerman, Boris: "RE: RFC Block Layer Extensions to Support NV-DIMMs"
Previous message: Luck, Tony: "RE: [PATCH] lockref: remove cpu_relax() again"
In reply to: Theodore Ts'o: "Re: [PATCH] random, Add user configurable get_bytes_random()"
Next in thread: Prarit Bhargava: "Re: [PATCH] random, Add user configurable get_bytes_random()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]