Re: CVS commit: src/sbin/newfs

To: "Perry E. Metzger" <perry%piermont.com@localhost>
Subject: Re: CVS commit: src/sbin/newfs
From: David Laight <david%l8s.co.uk@localhost>
Date: Thu, 4 Sep 2003 18:42:34 +0100

> > Maybe arc4random() could be used instead?
> 
> I'm not a huge believer in arc4random(), but it would be a strict (and
> indeed substantial) improvement over a linear congruential generator,
> yes. I would suggest making the alteration, and in the longer run we
> should discuss improved algorithms.

Actually random() insn't a 'linear congruential generator', it is
an 'Additive generator'. But to quote Schneier:
    Additive generators (sometimes called lagged Fibonacci generators) are
    extremely efficient because they produce random words instead of randmon
    bits.  They are not secure on their own, but can be used as building
    blocks for secure generators.
He then suggests a couple of generators that were not (at the time of
writing) breakable.

The RC4 based random sequence generator is probably secure, given
unknown key state.  RC4 itself is a trademarked - so an implementation
has to call itself something else.  There could also be licensing
issues if the routine is used in a commercial product.

        David

-- 
David Laight: david%l8s.co.uk@localhost

Follow-Ups:
- Re: CVS commit: src/sbin/newfs
  - From: Perry E. Metzger

References:
- CVS commit: src/sbin/newfs
  - From: David Laight
- Re: CVS commit: src/sbin/newfs
  - From: Perry E. Metzger
- Re: CVS commit: src/sbin/newfs
  - From: David Laight
- Re: CVS commit: src/sbin/newfs
  - From: Perry E. Metzger

Prev by Date: CVS commit: src/sys
Next by Date: Re: CVS commit: src/sbin/newfs
Previous by Thread: Re: CVS commit: src/sbin/newfs
Next by Thread: Re: CVS commit: src/sbin/newfs
Indexes:

Home | Main Index | Thread Index | Old Index