Can't Intel / AMD simply document what they made? And someone can possibly verify it.
Announcement
Collapse
No announcement yet.
Systemd Will Now Use RdRand Directly If The Kernel Can't Deliver Entropy
Collapse
X
-
Originally posted by shmerl View PostCan't Intel / AMD simply document what they made? And someone can possibly verify it.
If they implemented it in some external module over some normal interface then yeah you could verify it.
Like (and here comes the shilling) the ChaosKey, a off-the-shelf ubiquitous microcontroller running a opensource firmware that is basically just taking measurements of the noise generated by a dumb electronic circuit that is also open hardware, and sending the entropy over USB 1.1 connection to the system.
- Likes 1
Comment
-
Originally posted by shmerl View PostCan't Intel / AMD simply document what they made? And someone can possibly verify it.
The bottom line is you have to either make a choice to choose to trust them, or not. It's impossible to prove a negative.
Comment
-
Originally posted by soulsource View PostWait a second.
Why does hashtable generation require a random seed? Are the hash functions modified every boot? If yes, what is the purpose of this, and why is it so security relevant that making it use only good quality random numbers is even an option?
That said, it's a rather weak attack here. Most people definitely don't need to worryLast edited by treba; 26 August 2018, 03:28 PM.
- Likes 2
Comment
-
Originally posted by duby229 View PostI think it refers to quality in terms of their imagination. This entire dilemma is completely pointless, this entire process could be completely removed and absolutely nobody would notice, It is utterly unnecessary.
Comment
-
Originally posted by cybertraveler View Post... should actually be this:
(change in bold)Last edited by pal666; 26 August 2018, 11:06 PM.
Comment
-
-
Originally posted by soulsource View PostWait a second.
Why does hashtable generation require a random seed? Are the hash functions modified every boot? If yes, what is the purpose of this, and why is it so security relevant that making it use only good quality random numbers is even an option?
Comment
Comment