On 7/13/10, Perry E. Metzger pe...@piermont.com wrote:
It is disturbing to me that people oppose this so much.
Yes. A hardware RNG seems an obvious Good Thing. Not
a complete solution, but a very useful component.
For a lot of applications -- servers run in isolation, networking
equipment,
On Tue, Jul 13, 2010 at 05:46:36PM +1200, Peter Gutmann wrote:
Paul Wouters p...@xelerance.com writes:
Which is what you should do anyway, in case of a hardware failure. I
know the Linux intel-rng and amd-rng used to produce nice series of zeros.
Do you have any more details on this? Was
On 12 July 2010 18:13, Jack Lloyd ll...@randombit.net wrote:
On Mon, Jul 12, 2010 at 12:22:51PM -0400, Perry E. Metzger wrote:
BTW, let me note that if Intel wanted to gimmick their chips to make
them untrustworthy, there is very little you could do about it. The
literature makes it clear at
Paul Wouters p...@xelerance.com writes:
Which is what you should do anyway, in case of a hardware failure. I know the
Linux intel-rng and amd-rng used to produce nice series of zeros.
Do you have any more details on this? Was it a hardware problem, software
problem, ...? How was it caught?
On 12/07/2010 22:13, Eric Murray wrote:/
On Mon, Jul 12, 2010 at 03:37:45PM -0400, Paul Wouters wrote:
On Mon, 12 Jul 2010, Eric Murray wrote:
Then there's FIPS- current 140 doesn't have a provision for HW RNG.
They certify software RNG only, presumeably because proving a HW RNG to be
On 2 July 2010 13:19, Eugen Leitl eu...@leitl.org wrote:
http://www.technologyreview.com/printer_friendly_article.aspx?id=25670channel=Briefingssection=Microprocessors
Tuesday, June 29, 2010
Nanoscale Random Number Circuit to Secure Future Chips
Intel unveils a circuit that can pump out
Have they forgotten the enormous amount of suspicion last time they
tried this?
More likely they're expecting everyone else to have forgotten about being
suspicious.
/r$
--
STSM, WebSphere Appliance Architect
https://www.ibm.com/developerworks/mydeveloperworks/blogs/soma/
Ben Laurie b...@google.com writes:
On 2 July 2010 13:19, Eugen Leitl eu...@leitl.org wrote:
http://www.technologyreview.com/printer_friendly_article.aspx?id=25670channel=Briefingssection=Microprocessors
Tuesday, June 29, 2010
Nanoscale Random Number Circuit to Secure Future Chips
Intel unveils
On Tue, 13 Jul 2010 03:58:51 +1200 Peter Gutmann
pgut...@cs.auckland.ac.nz wrote:
Ben Laurie b...@google.com writes:
On 2 July 2010 13:19, Eugen Leitl eu...@leitl.org wrote:
http://www.technologyreview.com/printer_friendly_article.aspx?id=25670channel=Briefingssection=Microprocessors
On Jul 12, 2010, at 11:22 AM, Perry E. Metzger wrote:
The
literature makes it clear at this point that short of carefully
tearing apart and analyzing the entire chip, you're not going to catch
subtle behavioral changes designed to allow attackers backdoor
access.
I happen to be re-reading
On Mon, Jul 12, 2010 at 12:22:51PM -0400, Perry E. Metzger wrote:
BTW, let me note that if Intel wanted to gimmick their chips to make
them untrustworthy, there is very little you could do about it. The
literature makes it clear at this point that short of carefully
tearing apart and
On Mon, Jul 12, 2010 at 12:22:51PM -0400, Perry E. Metzger wrote:
Plugging in an
external unit is not going to happen in practice. If it isn't nearly
free and built in, it won't be used.
I completely agree. But HW RNGs are a pain in a lot of ways- modern chip
design libraries don't include
On Mon, Jul 12, 2010 at 01:13:10PM -0400, Jack Lloyd wrote:
I think it's important to make the distinction between trusting Intel
not to have made it actively malicious, and trusting them to have
gotten it perfectly correct in such a way that it cannot fail.
Fortunately, the second problem,
On Mon, 12 Jul 2010, Ben Laurie wrote:
On 2 July 2010 13:19, Eugen Leitl eu...@leitl.org wrote:
http://www.technologyreview.com/printer_friendly_article.aspx?id=25670channel=Briefingssection=Microprocessors
Tuesday, June 29, 2010
Nanoscale Random Number Circuit to Secure Future Chips
Intel
On Mon, 12 Jul 2010, Eric Murray wrote:
Then there's FIPS- current 140 doesn't have a provision for HW RNG.
They certify software RNG only, presumeably because proving a HW RNG to be
random enough is very difficult. So what's probably the primary market
(companies who want to meet FIPS) isn't
On Mon, Jul 12, 2010 at 03:37:45PM -0400, Paul Wouters wrote:
On Mon, 12 Jul 2010, Eric Murray wrote:
Then there's FIPS- current 140 doesn't have a provision for HW RNG.
They certify software RNG only, presumeably because proving a HW RNG to be
random enough is very difficult. So what's
http://www.technologyreview.com/printer_friendly_article.aspx?id=25670channel=Briefingssection=Microprocessors
Tuesday, June 29, 2010
Nanoscale Random Number Circuit to Secure Future Chips
Intel unveils a circuit that can pump out truly random numbers at high speed.
By Tom Simonite
It
17 matches
Mail list logo