Date: Tue, 21 Aug 2012 00:39:31 -0700 From: Steve Kargl <sgk@troutmask.apl.washington.edu> To: Doug Barton <dougb@freebsd.org> Cc: Ben Laurie <ben@links.org>, freebsd-arch@freebsd.org Subject: Re: /dev/random Message-ID: <20120821073931.GA99502@troutmask.apl.washington.edu> In-Reply-To: <5033346C.3080907@FreeBSD.org> References: <CAG5KPzz4GQ2C_ky_qrDroQ4srGL4daW0OO-F3eOvvL-9AO6zoQ@mail.gmail.com> <20120820220243.GA96700@troutmask.apl.washington.edu> <CAG5KPzwBzWvDFDZqzT4masbknKfVe-rvdTd1h6ZxEoG90Rcxqg@mail.gmail.com> <20120820225504.GA78528@server.rulingia.com> <5033346C.3080907@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Aug 21, 2012 at 12:10:36AM -0700, Doug Barton wrote: > On 08/20/2012 15:55, Peter Jeremy wrote: > > On 2012-Aug-20 23:05:39 +0100, Ben Laurie <ben@links.org> wrote: > >>> Well, it's hard to comment when you failed to explain > >>> *why* you think it is a mistake. > >> > >> Sorry - because I do not think it is wise to trust the h/w prng so > >> much we discard other entropy. > > > > This depends on the relative predictability of Yarrow vs the hardware > > RNG. > > Throughout this thread people have been mixing up entropy sources, and > hardware and software PRNGs. A PRNG has (at least) 2 components, the > entropy source(s), and the software that turns the entropy into a stream > of pseudo-random output. > > You can't directly compare "yarrow" vs. Padlock without comparing both > elements. Well, only one person seems confused, but OP seems to remain adament in being terse in his questions. Yes, it seems OP has conflated PRNG and entropy, but again he seems to not want to explain his point of view. > > FreeBSD random(4) currently only supports one hardware RNG - the > > one in the VIA Nehemiah. VIA have published an independent evaluation > > of their RNG which suggests it is a good source of entropy. > > I'm not sure what paper you're referring to, but according to the > padlock programming guide it's a random number generator, not (directly) > an entropy source. That said, it certainly *could* be used as an entropy > source for yarrow. I suspect Jeremy has read the /dev/random code; not some paper. UTSL. -- Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20120821073931.GA99502>