On Wed, 28 Jul 1999, Jon Callas wrote: > I never directly add in entropy > deposits. I run a separate entropy pool that is hash-based, and > periodically tap that pool to update the secondary pool. I get really > nervous about adding entropy directly into a single pool. I also like to > capitalize on the properties of hash functions for prepping the entropy. You basically have to do that to prevent chosen entropy attacks, and it's a good idea to pool the entropy anyway to prevent continuation attacks. -Bram
- Re: depleting the random number generat... Jon Callas
- Re: depleting the random number gen... Eugene Leitl
- Re: depleting the random numbe... bram
- Re: depleting the random n... Arnold G. Reinhold
- Re: depleting the random n... Eugene Leitl
- Re: depleting the random n... David Honig
- Re: depleting the random n... Eugene Leitl
- Re: depleting the random n... David Honig
- Re: depleting the random number gen... Arnold G. Reinhold
- Re: depleting the random numbe... Jon Callas
- No Subject bram
- No Subject crypto
- No Subject Anonymous
- No Subject Mixmaster
- Re: Marcus J. Ranum
- No Subject Anonymous
- No Subject Wibowo Arrianto Mukti