On Aug 28, 4:35am, [EMAIL PROTECTED] wrote:
> Our Yarrow implementation is available from
> http://opensource.zeroknowledge.com
>
> It uses OpenSSL for the hash function and cipher, and it can be hooked
> into the RAND_METHOD to replace OpenSSL's built-in PRNG.
>
> The Yarrow API is different from other PRNGs in that it differenciates
> between different randomness sources. That means that applications
> must call the Yarrow_Input function directly, or the OpenSSL API
> (RAND_add() and RAND_METHOD) would have to be modified to reflect
> this.
BTW, I'm currently working on a parallel project, namely incorporating
many of Yarrow's improvements (e.g., fast/slow pools) into EGD, plus
other improvements to EGD (including ones that eliminate the problems
with running out of entropy even if you're only needing low-quality
entropy). I should have a testing version ready pretty soon, although
there are a lot more improvements that need to be made in it. I'm
mentioning this on the OpenSSL list because some of the improvements
in question will enable OpenSSL to work better with EGD; I've done
some work on rewriting rand_egd.c for this, although that needs
further testing (I'm much more of a Perl programmer than I am a C
programmer, which is one reason why EGD interests me...).
-Allen
--
Allen Smith [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
