|
|
Subscribe / Log in / New account

Fixing getrandom()

Fixing getrandom()

Posted Sep 28, 2019 12:07 UTC (Sat) by corsac (subscriber, #49696)
In reply to: Fixing getrandom() by mgedmin
Parent article: Fixing getrandom()

Agreed. I didn't read the whole thread, but I'm surprised not to see any reference to “Mining your Ps and Qs” from Usenix Security 2012 (https://www.usenix.org/conference/usenixsecurity12/techni... and https://factorable.net/weakkeys12.extended.pdf)

to post comments

Fixing getrandom()

Posted Sep 28, 2019 19:44 UTC (Sat) by patrakov (subscriber, #97174) [Link] (1 responses)

This site was indeed mentioned in the discussion. However, a return of the factorable.net issue for systems that do not properly restore the random seed is preferable, in my viewpoint, to breaking almost all systems.

Fixing getrandom()

Posted Sep 29, 2019 9:01 UTC (Sun) by corsac (subscriber, #49696) [Link]

Factorable.net problem is not only for systems not restoring random seed. Most of them are devices booting for the first time and generating long term keys (ssh etc.) with a really similar entropy state (because of unseeded RNG). It's likely there are a *lot* of devices like these beeing shipped every day, even more so with cloud VMs, so breaking those is a really bad idea I think.


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds