[140233] in cryptography@c2.net mail archive
Re: CPRNGs are still an issue.
daemon@ATHENA.MIT.EDU (Paul Crowley)
Tue Dec 16 12:58:13 2008
Date: Mon, 15 Dec 2008 20:56:52 +0000
From: Paul Crowley <paul@ciphergoth.org>
To: Damien Miller <djm@mindrot.org>
CC: "James A. Donald" <jamesd@echeque.com>, cryptography@metzdowd.com
In-Reply-To: <alpine.BSO.1.10.0812121241230.10868@fuyu.mindrot.org>
Damien Miller wrote:
> On Thu, 11 Dec 2008, James A. Donald wrote:
>> If one uses a higher resolution counter - sub
>> microsecond - and times multiple disk accesses, one gets
>> true physical randomness, since disk access times are
>> effected by turbulence, which is physically true
>> random.
>
> Until someone runs your software on a SSD instead of a HDD. Oops.
How would software that attempted to measure the entropy of the incoming
seek times behave when an SSD replaced an HDD? Would the reduction in
measured entropy be proportional to the reduction in entropy from the
attacker's point of view?
--
__
\/ o\ Paul Crowley
/\__/ www.ciphergoth.org
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
