Hi, [1] patch at http://www.chronox.de/jent/jitterentropy-20130516.tar.bz2
To overcome the insufficient amount of entropy present (at least) on a Linux box, I implemented the CPU Jitter random number generator available at http://www.chronox.de/ . The heart of the RNG is about 30 lines of easy to read code. The readme in the main directory explains the different code files. The new version now implements the RNG as an OpenSSL engine as well as provides a patch for RAND_poll. The documentation of the CPU Jitter random number generator (http://www.chronox.de/jent/doc/index.html and PDF at http://www.chronox.de/jent/doc/CPU-Jitter-NPTRNG.pdf -- the graphs and pictures are better in PDF) offers a full analysis of: - the root cause of entropy - a design of the RNG - statistical tests and analyses - entropy assessment and explanation of the flow of entropy The document also explains the core concept to have a fully decentralized entropy collector for every caller in need of entropy. The appendix of the documentation contains example use cases by providing link code to the Linux kernel crypto API, libgcrypt and OpenSSL. Links to other cryptographic libraries should be straight forward to implement. These implementations follow the concept of decentralized entropy collection. The man page provided with the source code explains the use of the API of the CPU Jitter random number generator. The test cases used to compile the documentation are available at the web site as well. Ciao Stephan Signed-off-by: Stephan Mueller <[email protected]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
