| |||||||||||||
bogus random entropy sourcesbogus random entropy sourcesPosted Oct 5, 2010 18:24 UTC (Tue) by ejr (subscriber, #51652)In reply to: bogus random entropy sources by jzbiciak Parent article: Solid-state storage devices and the block layer
It's not as easy as it seems. You can generate random bits, but they are highly skewed, with different skews depending on the temperature, etc. You need to extract a more regular randomness from them, and extractors can require a good bit of space. The extractors I know (theory, not actual architecture) also must be running continually, sucking power.
(Log in to post comments)
bogus random entropy sources Posted Oct 5, 2010 19:10 UTC (Tue) by jzbiciak (✭ supporter ✭, #5246) [Link] VIA's approach on the C3 doesn't sound too unwieldy. This white paper analyzing the generator's output makes for an informative read. The punch line is that it looks like a pretty reasonable source of entropy as long as you do appropriate post processing. The random numbers it generates aren't caveat free, but they're heckuva lot better than disk seeks and keypresses.
bogus random entropy sources Posted Oct 6, 2010 8:40 UTC (Wed) by pcampe (guest, #28223) [Link]
I don't understand why they didn't follow the guidelines in NIST Standard 800-22 (rev 1a), "A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Applications".
bogus random entropy sources Posted Oct 6, 2010 13:56 UTC (Wed) by jzbiciak (✭ supporter ✭, #5246) [Link] Probably because they didn't have a time machine. ;-) The document you reference was written this year. The white paper I reference was written in 2003. And if you meant Rev 1, that didn't come out until 2008. Maybe you meant the original 800-22? That one came out in 2001. (Dates came from here.)
|
|||||||||||||