[Cryptech Tech] trng ready for play

Joachim Strömbergson joachim at secworks.se
Thu Oct 2 15:47:37 UTC 2014

Previous message: [Cryptech Tech] trng ready for play
Next message: [Cryptech Tech] trng ready for play
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Randy Bush wrote:
> so the ROs (without the tortured transistor) take almost ten seconds
> to generate enough entropy to seed?

(I _knew_ someone would ask that questiom ;-)

No, not at all.

The rosc_entropy provider produces values at about 195 kbps. Since the
other entropy source does not provide any entropy, the rosc_entropy
provider must supply all 2048 bits needed for reseed. That is 64 words
which  should take about 10 ms.

But for 32 o of those words the collector will stall until the timeout
has been reached. This is due to the fact that the collector attempts to
get them from the enabled avalanche_entropy provider.

In the movie the timeout is set to a very long time in order for us
humans to be able to see what happens. If you would lower the timeout to
a more reasonable speed that better matches the expected time (times two
or so) for the slowest entropy provider to come up with a word, the
reseed would go much faster.

Basically what you are seeing is 32 timeouts and some sigma delay for
the rosc_entropy provider.

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=7fW6
-----END PGP SIGNATURE-----

Previous message: [Cryptech Tech] trng ready for play
Next message: [Cryptech Tech] trng ready for play
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list