LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Shumway lands in Firefox

LWN.net Weekly Edition for October 3, 2013

Integrity and embedded devices

NUMA scheduling progress

LWN.net Weekly Edition for September 26, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

The search for truly random numbers in the kernel

The search for truly random numbers in the kernel

Posted Sep 20, 2013 19:32 UTC (Fri) by ikm (subscriber, #493)
In reply to: The search for truly random numbers in the kernel by gmaxwell
Parent article: The search for truly random numbers in the kernel

Oh, I see what you meant now. But do SSH/SSL sessions really use /dev/random and not /dev/urandom? Sounds like an overkill to me. Once /dev/urandom is properly seeded, I would expect the numbers it provided to be sufficiently random for session keys.

(Log in to post comments)

The search for truly random numbers in the kernel

Posted Sep 20, 2013 20:00 UTC (Fri) by gmaxwell (subscriber, #30048) [Link]

SSH does, at least on some systems. If this is advisable or not is another question.

When long-term secrets are used for signing with DSA then whatever argument for /dev/random there was in the first place also really applies to the nonce generation— since weak nonces will leak the private key.

To some extent there is pressure on developers to use the "more secure" thing so long as it exists. No one wants to be wearing the dunce cap for some massive security compromise.

But it would be nice if there were enough space in the pool that it wasn't quite so much of a trap.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds