Re: Collecting entropy from device_attach() times.

看板FB_security作者時間13年前 (2012/09/20 07:32), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串15/80 (看更多)
On Wed, Sep 19, 2012 at 03:34:59PM -0700, David O'Brien (@FreeBSD) wrote: > On Tue, Sep 18, 2012 at 11:14:22PM +0200, Pawel Jakub Dawidek wrote: > > I experimented a bit with collecting entropy from the time it takes for > > device_attach() to run (in CPU cycles). It seems that those times have > > enough variation that we can use it for entropy harvesting. It happens > > even before root is mounted, so pretty early. > > I like it. Microsoft harvests from something like 900 events/things. Some of this is documented in 'Windows 7 CNGSYS FIPS Security Policy.docx' Section 5.3.2 "SystemPrng". [http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1328.pdf] should this give anyone more ideas... -- -- David _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 obrien. 的文章
文章代碼(AID): #1GMbNose (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 15 之 80 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共80篇)
更多 obrien. 的文章
文章代碼(AID): #1GMbNose (FB_security)