Re: /dev/random and /dev/psaux: too much entropy assumed?

C. Scott Ananian (cananian@lesser-magoo.lcs.mit.edu)
Mon, 31 May 1999 05:07:31 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Michael Mess: "Sound problems with es1370"
Previous message: Gabor Lenart: "Re: vgacon & mdacon hercules related question"

On 30 May 1999, Florian Weimer wrote:

> After subtracting the timer interrupts, we get an average of over
> nine bits added on each /dev/psaux interrupt to the /dev/random pool.
> I don't think that there is that much entropy involved to justify this
> high value.

How many bits would you propose? Remember you've got several sources of
randomness here:
1) time between mouse events (in processor cycles, usually)
2) x delta
3) y delta
4) button status

Nine bits doesn't seem all that unreasonable to me. And if you care, why
not distill it further. The techniques used to make very random numbers
out of partially random numbers are well known.

Speaking personally, I would like to see much more analysis of the sources
of mouse randomness and the number of bits you think we can "reasonably"
extract from these before you start throwing stones. Note that the kernel
sources are open, so all the algorithms are in plain view. In particular,
the algorithm used to calculate how many bits of 'true' randomness we're
getting for each parcel of information added to the pot is in
linux/drivers/char/random.c, and takes into account first and second order
deltas to more accurately respond to how 'random' your input source
currently is. I suspect during your test you were tossing the mouse
around quite randomly, leading to a greater amount of entropy added to the
pot than if you observed more 'natural' conditions with smaller mouse
movements.
--s
@ @
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-oOO-(_)-OOo-=-=-=-=-=
C. Scott Ananian: cananian@lcs.mit.edu / Declare the Truth boldly and
Laboratory for Computer Science/Crypto / without hindrance.
Massachusetts Institute of Technology /META-PARRESIAS AKOLUTOS:Acts 28:31
-.-. .-.. .. ..-. ..-. --- .-. -.. ... -.-. --- - - .- -. .- -. .. .- -.
PGP key available via finger and from http://www.pdos.lcs.mit.edu/~cananian

SEAL Team 6 quiche struggle cracking assassination Sudan Noriega KGB
Ft. Bragg Ortega Honduras Serbian Hawk DES nuclear fissionable UKUSA

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michael Mess: "Sound problems with es1370"
Previous message: Gabor Lenart: "Re: vgacon & mdacon hercules related question"