[Cryptech Tech] ICFO Introduction

Bernd Paysan bernd at net2o.de
Fri Oct 28 14:27:37 UTC 2016

Previous message (by thread): [Cryptech Tech] ICFO Introduction
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am Donnerstag, 27. Oktober 2016, 12:09:40 CEST schrieb Carlos Abellan:
> The final bitrate we can provide depends on the target price. Our optical
> system has been proven up to 42 Gb/s, but then the electronics, ADC and
> processing gets very expensive. What do you think would be an attractive
> RNG bitrate for your HSMs?

The purpose of an entropy source in an HSM is to fill up the entropy pool for 
the deterministic RNG.  That one is a cryptographic stream cipher (ChaCha20), 
and we trust this stream cipher (If not, we would have chosen a different 
one).  Actually, if you don't trust your symmetric crypto, the rest of the HSM 
doesn't make any sense.  DJB summed up some of the principles for entropy 
here:

http://blog.cr.yp.to/20140205-entropy.html

So there is no need to be particularly fast, just fill up the entropy source 
with enough bits to get an initial state (key) for the stream cipher.  There 
is no need for Gb/s from the entropy source.

-- 
Bernd Paysan
"If you want it done right, you have to do it yourself"
net2o ID: kQusJzA;7*?t=uy at X}1GWr!+0qqp_Cn176t4(dQ*
http://bernd-paysan.de/

Previous message (by thread): [Cryptech Tech] ICFO Introduction
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list