| |||||||||||||
Why not get randomness from sensors?Why not get randomness from sensors?Posted May 11, 2006 14:44 UTC (Thu) by pjones (subscriber, #31722)In reply to: Why not get randomness from sensors? by jwb Parent article: On the safety of Linux random numbers
I think you're wrong about what "substantial" means here. It doesn't need to be enough entropy to use as the system's only source. It needs to be enough to pervert the data from all the other sources in a way that masks their (potential) weeknesses. That requires surprisingly little data, if it is truly unavailable to attackers.
To that end, the bigger worry here is that it's just the sort of data you might want to stick in SNMP for your monitoring infrastructure to check on.
(Log in to post comments)
Why not get randomness from sensors? Posted May 11, 2006 21:54 UTC (Thu) by giraffedata (subscriber, #1954) [Link] It doesn't need to be enough entropy to use as the system's only source. It needs to be enough to pervert the data from all the other sources in a way that masks their (potential) weeknesses. You seem to be describing a means of creating entropy out of nothing. If all the other sources provide 1000 bits per second of entropy and the hardware sensor gives you another 10 bits per second, you've got at most 1010 bits per second of entropy no matter what you do with those 10 new bits. So I think "substantial" is the same amount no matter how you look at it. Actually, I think the sensors mentioned have negligible entropy to contribute. You read them all digitally, and given one reading, you can predict very well what the reading will be a second later, to the full precision of the sensor.
|
|||||||||||||