On Mon, 19 Jul 1999, Enzo Michelangeli wrote: > Sorry folks, but I can't understand where the problem is supposed to be. The > entropy of a pool is a measure of the information about its internal state > that we don't know: which is why in thermodynamics the same name is given to > the logarithm of the number of (invisible) microstates corresponding to an > (observed) macrostate. Now: if we extract bits from the generator, we cannot > gain insight over the internal state and its evolution, because on the path of > a well-designed RNG there is a one-way function whose inversion is not > computationally feasible. That's true, but not horribly obvious to most people, and the design of the random number gizmo isn't all that trivial. The brief summary of the above is that it's possible to simply replace /dev/random with something which doesn't deplete entropy and the problem will go away. And yes, it is possible to do that in a secure manner. -Bram
- Re: depleting the random number generator Mike Brodhead
- Re: depleting the random number generator Bill Stewart
- Re: depleting the random number generator James A. Donald
- Re: depleting the random number generator David Honig
- Re: depleting the random number generator Ben Laurie
- Re: depleting the random number generator Bill Stewart
- Re: depleting the random number generator Ben Laurie
- RE: depleting the random number generator Enzo Michelangeli
- Re: depleting the random number generator bram
- Re: depleting the random number generator Ben Laurie
- Re: depleting the random number generator bram
- Re: depleting the random number generator James A. Donald
- Re: depleting the random number genera... Arnold G. Reinhold
- Re: depleting the random number g... David Wagner
- Re: depleting the random numb... James A. Donald
- Re: depleting the random numb... bram
- Re: depleting the random numb... James A. Donald
- Re: depleting the random numb... John Kelsey
- Summary re: /dev/random Sandy Harris
