random(4) plugin infrastructure for mulitple RNG in a modular fashion

Mark R V Murray mark at grondar.org
Sat Aug 24 08:35:56 UTC 2013


On 24 Aug 2013, at 00:18, John-Mark Gurney <jmg at funkthat.com> wrote:

> Tim Kientzle wrote this message on Sun, Aug 18, 2013 at 12:27 -0700:
>> But clearly some people really want to be able to
>> force /dev/random to be the unconditioned output
>> of a particular HW RNG.  I don't know if this is a
>> good idea or not, but clearly there are people who
>> want this.
> 
> Considering that the Ivy bridge's rdrand implementation already uses
> AES to condition the raw entropy source, using Yarrow/etc to
> additionally condition it seems excesive, hence why some people want
> to use it directly…

Nehemiah as well, using a Davies-meyer hash in software. However, what
may be excessive for one person may be another's requirement.

M
-- 
Mark R V Murray

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 353 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freebsd.org/pipermail/freebsd-arch/attachments/20130824/d83dd316/attachment.sig>


More information about the freebsd-arch mailing list