[Cryptech Tech] ubuntu for the win!

Randy Bush randy at psg.com
Sat Feb 28 21:36:08 UTC 2015


>>> fwiw ndn has a polliate server on random.nordu.net fed by a pair of
>>> idquantique optical quantum devices
>>>> https://wiki.ubuntu.com/Security/Features#prng-cloud
>> and gchq has a polliate server ....
> The pages says that it provides a secure way to seed the PRNG.  How?
> It does not say how the authentication or trust relationships are
> handled.

but who the heck could/should you trust, even if you could authenticate
that you were talking to them?

we can guess that, in the ndn case, they control both the polliate
server and all the infrastructure between it and the naïve devices.
and the cisco/juniper implants in the path are not tuned to this
particular app/protocol.

but that web page suggests you use a custom client and then trust
https://entropy.ubuntu.com/.  call me silly, but i am having a severe
problem seeing how this is at all reasonable.

randy


More information about the Tech mailing list