[src/trunk]: src/lib/libc/gen Number the properties. Identify the key erasur...

[riastradh <riastradh%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/c000bc9972bc
branches:  trunk
changeset: 346500:c000bc9972bc
user:      riastradh <riastradh%NetBSD.org@localhost>
date:      Fri Jul 15 15:23:43 2016 +0000

description:
Number the properties.  Identify the key erasure property by name.

diffstat:

 lib/libc/gen/arc4random.3 |  10 ++++++++--
 1 files changed, 8 insertions(+), 2 deletions(-)

diffs (31 lines):

diff -r 716b6a592658 -r c000bc9972bc lib/libc/gen/arc4random.3
--- a/lib/libc/gen/arc4random.3 Fri Jul 15 14:25:55 2016 +0000
+++ b/lib/libc/gen/arc4random.3 Fri Jul 15 15:23:43 2016 +0000
@@ -1,4 +1,4 @@
-.\"    $NetBSD: arc4random.3,v 1.19 2014/11/17 18:41:29 riastradh Exp $
+.\"    $NetBSD: arc4random.3,v 1.20 2016/07/15 15:23:43 riastradh Exp $
 .\"
 .\" Copyright (c) 2014 The NetBSD Foundation, Inc.
 .\" All rights reserved.
@@ -112,7 +112,7 @@
 functions provide the following security properties against three
 different classes of attackers, assuming enough entropy is provided by
 the operating system:
-.Bl -bullet -offset abcd
+.Bl -enum -offset abcd
 .It
 An attacker who has seen some outputs of any of the
 .Nm
@@ -131,6 +131,12 @@
 means the result of any single request to an
 .Nm
 function, no matter how short it is.
+.Pp
+The second property is sometimes called
+.Sq forward secrecy ,
+.Sq backtracking resistance ,
+or
+.Sq key erasure after each output .
 .Sh IMPLEMENTATION NOTES
 The
 .Nm