Re: regarding the changes to kernel entropy gathering

To: NetBSD-current Users's Discussion List <current-users%netbsd.org@localhost>, NetBSD Kernel Technical Discussion List <tech-kern%NetBSD.org@localhost>
Subject: Re: regarding the changes to kernel entropy gathering
From: Joerg Sonnenberger <joerg%bec.de@localhost>
Date: Mon, 5 Apr 2021 01:05:58 +0200

On Sun, Apr 04, 2021 at 09:24:56PM +0000, RVP wrote:
> PS. Is there a way to get the bit-stream from the various in-kernel
> sources so that we can run them through these sort of tests? That
> way we can check--not intuit--how random the bit-streams they
> produce really are.

Part of the problem here is that most of the non-RNG data sources are
easily observable either from the local system (e.g. any malicious user)
or other VMs on the same machine (in case of a hypervisor) or local
machines on the same network (in case of network interrupts). That's the
real reason why their entropy is hard to estimate. It becomes even more
annoying with modern hardware features like interrupt moderation of
nics. They can make the timing of interrupts highly predicable.

Joerg

Follow-Ups:
- Re: regarding the changes to kernel entropy gathering
  - From: Greg A. Woods

References:
- regarding the changes to kernel entropy gathering
  - From: Greg A. Woods
- Re: regarding the changes to kernel entropy gathering
  - From: Taylor R Campbell
- Re: regarding the changes to kernel entropy gathering
  - From: Greg A. Woods
- Re: regarding the changes to kernel entropy gathering
  - From: RVP

Prev by Date: Re: regarding the changes to kernel entropy gathering
Next by Date: Re: regarding the changes to kernel entropy gathering
Previous by Thread: Re: regarding the changes to kernel entropy gathering
Next by Thread: Re: regarding the changes to kernel entropy gathering
Indexes:

Home | Main Index | Thread Index | Old Index