> Date: Thu, 23 Jun 2005 12:22:30 -0400 > From: C Wegrzyn <[EMAIL PROTECTED]> > > I have to generate quite a few random keys (and iv's) during a days. It > comes out to about 1 million keys (16 bytes each) and 1 million iv's (16 > bytes each). > > I tried using /dev/random and /dev/urandom but in one case it blocks too > much of the time and in the other seems to run pretty slow. I tried > using EGAD et al to no avail. So I decided to take a different > approach. I am hoping to hear from others how they might have solved > the problem. > > I thought I would take a hash of the message and using it as the salt > call EVP_BytesToKey. I was wondering what others think of this solution.
I've seen this approach: Use the hardware random number generator HRNG to seed a pseudorandom number generator PSRG. Use PSRG to generate random numbers. Each n random numbers, reseed PSRG from HRNG. -- Ken Goldman [EMAIL PROTECTED] 914-784-7646 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
