Using a separate PRNG state for each origin will ensure that entropy
is reused (since all of them will need to seed from the same master
PRNG). This is bad.
Not seeding them from the same master PRNG would reduce the entropy
available in each state. As was the case with Netscape Navigator in
the
On Tue, Jul 26, 2011 at 1:30 PM, Brian Smith wrote:
> Mozilla would like to expose a secure PRNG (basically, a wrapper around
> PK11_GenerateRandom) to JavaScript content:
> https://bugzilla.mozilla.org/show_bug.cgi?id=440046
>
> There is some agreement that we should maintain separate PRNG state
On 07/26/2011 03:30 PM, Brian Smith wrote:
There is some agreement that we should maintain separate PRNG state
for each origin (roughly: domain name), and that all those states
should be separate from the PRNG state used internally.
PK11_GenerateRandom currently shares the PRNG state across all
On 2011-07-26 13:30 PDT, Brian Smith wrote:
> Mozilla would like to expose a secure PRNG (basically, a wrapper around
> PK11_GenerateRandom) to JavaScript content:
> https://bugzilla.mozilla.org/show_bug.cgi?id=440046
>
> There is some agreement that we should maintain separate PRNG state for
> e
4 matches
Mail list logo