Re: cprng_fast implementation benchmarks

To: <tls%panix.com@localhost>
Subject: Re: cprng_fast implementation benchmarks
From: <Paul_Koning%Dell.com@localhost>
Date: Thu, 24 Apr 2014 14:03:32 +0000

On Apr 23, 2014, at 7:56 PM, Thor Lancelot Simon <tls%panix.com@localhost> 
wrote:

> On Wed, Apr 23, 2014 at 02:21:31PM +0000, Paul_Koning%Dell.com@localhost 
> wrote:
>> 
>> I?ve been watching this long stream of messages flying by, and I?m a bit 
>> concerned about the approach.
>> 
>> As I understand it, there is a strong RNG, based on RC4 (?ARC4?) in the 
>> kernel today.
> 
> No.  There is a "strong" RNG, based on the NIST SP800-90 CTR_DRBG with AES128
> as the block transform.
> 
> There is also a "fast" RNG, based on RC4.
> 
> We are discussing the replacement of the "fast" RNG.

Ok. But if that’s a non-strong RNG, why are we discussing security properties?  
And why are we considering algorithms this complex, rather than using a PRNG?

In other words, this is being treated like it’s in between a PRNG and a strong 
RNG.  I don’t understand why there can be a middle ground like that, and what 
its required properties would be.

        paul

Follow-Ups:
- Re: cprng_fast implementation benchmarks
  - From: Mindaugas Rasiukevicius

References:
- cprng_fast implementation benchmarks
  - From: Thor Lancelot Simon
- Re: cprng_fast implementation benchmarks
  - From: Thor Lancelot Simon
- Re: cprng_fast implementation benchmarks
  - From: Paul_Koning
- Re: cprng_fast implementation benchmarks
  - From: Thor Lancelot Simon

Prev by Date: Re: cprng_fast implementation benchmarks
Next by Date: Re: cprng_fast implementation benchmarks
Previous by Thread: Re: cprng_fast implementation benchmarks
Next by Thread: Re: cprng_fast implementation benchmarks
Indexes:

Home | Main Index | Thread Index | Old Index