I had posted about these on this list earlier. I have had 10 of them purchased. They are waiting for analysis. If anyone on this list has the time and expertise (both hardware and software), they can have one sent gratis for a full analysis report to this list. If you carry out a full destructive analysis [the innards are epoxied], a replacement will be sent.
The web site mentioned that the on board processor running closed source does entropy checks before transmitting the data via a secure channel over USB to the open source driver on Linux. Obviously I am concerned about the closed source on the micro. Speaking of remailers, a few will be set up shortly. Where is the state of the art documentation? Debian seems to have a reasonably simple apt-get process to get mixmaster going, which I have used to set up a node that has been running for quite some time now, but I do not monitor it (middleman only). What about clients for dummies? Best, Ray On 27/01/11 13:37, Len Sassaman wrote: > On Wed, 26 Jan 2011, Thierry Moreau wrote: > >> 2) a host plus some H/W for true random source > > Speaking of hardware entropy sources, has anyone analyzed the Simtek > Electronics > Entropy Key (http://www.entropykey.co.uk/)? It's a USB dongle, recommended to > me > by several remailer operators. To quote the web site: > > "The Entropy Key contains two high-quality noise generators, and an ARM Cortex > CPU that actively measures, checks and confirms all generated random numbers, > before encrypting them and sending them to the server. It also actively > detects > attempts to corrupt or sway the device. It aims towards FIPS-140-2 Level 3 > compliance with some elements of Level 4, including tamper-evidence, > tamper-proofing, role-based authentication, and environmental attacks. If it > detects that one of its two generators has failed, may be about to fail, or if > it detects a physical attack, it will automatically shut down." > > I have to wonder how it is 2010 and this sort of hardware isn't a standard > motherboard component, but if the Entropy Key dongle is sound, it's an > affordable solution to this problem. > > > --Len. > _______________________________________________ > cryptography mailing list > [email protected] > http://lists.randombit.net/mailman/listinfo/cryptography -- Rayservers http://www.rayservers.com/ Zurich: +41 43 5000 728 London: +44 20 30 02 74 72 Panama: +507 832 1846 San Francisco: +1 408 419 1978 USA Toll Free: +1 888 265 5009 10:00 - 24:00 GMT We prefer to be paid in gold Globals™ and silver Isles™ Global Standard™ - Global Settlement Foundation http://www.global-settlement.org/ Our PGP key 0x079CCE10 on http://keyserver.rayservers.com/ _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
