More options for HW based random number generators supported by kbmMW.

-
More options for HW based random number generators supported by kbmMW.
https://components4developers.blog/2018/12/04/kbmmw-safety-first-3-hw-random-numbers-2/

Comments

  1. A. BouchezDecember 5, 2018 at 1:08 PM

    Intel CPUs are fine as seed to cryptographic PRNG, but not as single direct source of random data.
    The famous quote is plus.google.com - I am so glad I resisted pressure from Intel engineers to let /dev/random rely...
    And Intel RND is also (much) slower than AES-NI PRNG for instance, as implemented in our http://blog.synopse.info/post/AES-CSPRNG

    ReplyDelete
  2. Kim MadsenDecember 5, 2018 at 10:59 PM

    A. Bouchez Actually Ive seen non Intel studies that indicates that the entropy of their hw TRNG is in the better end of those. What one can "wonder" about is if there are backdoor in it that somehow can be triggered. kbmMW also includes several other high quality pseudo random number generators which can be seeded from the Intel TRNG, but I would say that for most practical purposes the performance of the TRNG (even the external HW based one supported by kbmMW) is high enough.

    ReplyDelete

Post a Comment