[Cryptech Tech] Suggested changes to TRNG

Basil Dolmatov dol at reedcat.net
Mon Oct 5 15:06:54 UTC 2015

Previous message (by thread): [Cryptech Tech] Suggested changes to TRNG
Next message (by thread): [Cryptech Tech] Suggested changes to TRNG
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

How one can be sure that this is enough? 

Warmup delay is a possible solution to give system _some_ time to start, but should not be the only reason to consider entropy output as usable.

Tests should be performed to make sure that the output has good quality and can be used. 

dol@ с iPad

> 5 окт. 2015 г., в 16:40, Joachim Strömbergson <joachim at secworks.se> написал(а):
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
> 
> Aloha!
> 
> Joachim Strömbergson wrote:
>> Russ Housley wrote:
>>> A pause seems prudent, but it is unclear to me how long it should 
>>> be.
> 
> Ok, I've implemented a warmup delay solution. Right now the entropy
> providers will not make any entropy available to the mixer before
> WARMUP_CYCLES. Currently this value is set to 1M cycles. With a 50 MHz
> clock we delay first mixing with 20 ms.
> 
> For the rosc based entropy providers this means that we will throw away
> close to 4000 bits that we otherwise would have collected and used.
> 
> - -- 
> Med vänlig hälsning, Yours
> 
> Joachim Strömbergson - Alltid i harmonisk svängning.
> ========================================================================
> Joachim Strömbergson          Secworks AB          joachim at secworks.se
> ========================================================================
> -----BEGIN PGP SIGNATURE-----
> Comment: GPGTools - http://gpgtools.org
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
> 
> iQIcBAEBCAAGBQJWEn2/AAoJEF3cfFQkIuyNiO0P/jr+xjHcGRwG/v1VmbuNugTO
> UxHTnFJWNzQ3xJKsZhLCpgQDlg4rkyA+9ONk7GawRtTU93cdrGWuVtG8INHEz/EG
> njUV7w7YzXyP2K0MwJlb/+7VkbDyWaxdBlG0U9u87uU//Me3hVUqJ9pIJcrdzLHq
> mI0DpRKsJnCL4WDGKH0645iyhvONPA/koP5O9+0qlvf12hUkawXXVbdY+wWct0Bx
> hHleOi5+DnvYCLId3hB8VISkUuyWomo0x6ycAKuoOm5beaRDZehA0Us8khtwPuB9
> BjT0aS12DHOadZy0zf3rhbLPuOWAVVW6VjM/ZvqRJVSiiQduJfUZU8GwJ+GaGiVI
> AZI+ayaB8Vnqhuu5xZ4AOdqxYIi1CsNKu4z3gtxR6oojIjKojfkf/1er1NFhswwX
> H38el6Z1iG1JRslJ4RwxA3MQTlHzhpD2cEZk8fmkqENZUzp6VZh8m2eg//kvp2xC
> Aka1G7clenydL5OHS0yzXzrWXX3M2pQtDxZgGnetnGs43sxMMDs4uKxdD9Cn4eEO
> ok7hpL1Qgl0SxpvozIvFD5igFCu6furAIsw+6MMNLBTl4TFfhpOgNdonNFd/+Ih3
> dVscc9jot76rpudpp96TrclCXuAkpN5J1hBK+sxh3tnzH8GuZ1pwbOcPMzt1Rj3+
> BdojQikMPQdiVgASyu25
> =Ua1Q
> -----END PGP SIGNATURE-----
> _______________________________________________
> Tech mailing list
> Tech at cryptech.is
> https://lists.cryptech.is/listinfo/tech

Previous message (by thread): [Cryptech Tech] Suggested changes to TRNG
Next message (by thread): [Cryptech Tech] Suggested changes to TRNG
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list