So WTF happened?
--
Sadiq Saif
___
cryptography mailing list
cryptography@randombit.net
http://lists.randombit.net/mailman/listinfo/cryptography
--
Swair Mehta
___
cryptography mailing list
Mprotect() to keep stray pointers out.
Obfuscate data kept in that memory.
You can do a lot in software and in practice that might be enough. In theory,
true security can only be achieved through hardware based security
modules-atleast thats what I feel, others might disagree.
Paranoid
I think the programs block when reading from random, if the kernel
doesnt have enough entropy. When reading from urandom, that is not the
case. Basically the internal pool is reused to generate pseudo random
bits so that the call doesnt need to block.
As far as I know, there is no measure like 50