[145611] in cryptography@c2.net mail archive
Re: /dev/random and virtual systems
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Tue Aug 3 12:12:36 2010
Date: Tue, 3 Aug 2010 12:03:37 -0400
From: "Perry E. Metzger" <perry@piermont.com>
To: Henrique de Moraes Holschuh <hmh@debian.org>
Cc: Yaron Sheffer <yaronf.ietf@gmail.com>, cryptography@metzdowd.com
In-Reply-To: <20100802231742.GA16394@khazad-dum.debian.net>
On Mon, 2 Aug 2010 20:17:42 -0300 Henrique de Moraes Holschuh
<hmh@debian.org> wrote:
> Desktops with live-CDs and half-assed embedded boxes that lack a
> TRNG are the real problem.
I'm not sure what to do about the live CD problem, but in a previous
iteration of this discussion a couple of years ago, I proposed that
using a strong cipher (like AES) with a key installed at the factory
was probably the right solution to the $40 embedded device problem. I
can dig up my much longer exposition on that if anyone wishes.
--
Perry E. Metzger perry@piermont.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
