Re: [RFC][PATCH 0/6] /dev/random - a new approach

From: Theodore Ts'o
Date: Thu Apr 21 2016 - 22:52:08 EST


I still have a massive problem with the claims that the "Jitter" RNG
provides any amount of entropy. Just because you and I might not be
able to analyze it doesn't mean that somebody else couldn't. After
all, DUAL-EC DRNG was very complicated and hard to analyze. So would
be something like

AES(NSA_KEY, COUNTER++)

Very hard to analyze indeed. Shall we run statistical tests? They'll
pass with flying colors.

Secure? Not so much.

- Ted