[nycbug-talk] FreeBSD abandoning hardware randomness

Isaac (.ike) Levy ike at blackskyresearch.net
Wed Dec 11 11:05:13 EST 2013


On December 11, 2013 09:37:59 AM EST, "Isaac (.ike) Levy" 
<ike at blackskyresearch.net> wrote:

> On December 10, 2013 09:12:40 PM EST, James E Keenan 
> <jkeen at verizon.net> wrote:
>> Article here:
>> http://www.theregister.co.uk/2013/12/09/freebsd_abandoning_hardware_randomness/
> This made the rounds in ARS yesterday too,
> http://arstechnica.com/security/2013/12/we-cannot-trust-intel-and-vias-chip-based-crypto-freebsd-developers-say/
> --
> While it's all on our mind, here's an excellent old article detailing 
> random facilities, focused on practical use of OpenBSD and FreeBSD,
> https://calomel.org/entropy_random_number_generators.html

It was pointed out to me on that the calomel articles are not known for 
their correctness, which piques my curiosity:

Can anyone point at solid practical documentation for using, sourcing, 
and validating various random subsystems on *BSD/UNIX systems?


More information about the talk mailing list