Key generation: is it possible to fail fast?
muelli at cryptobitch.de
Fri Feb 17 16:17:13 CET 2017
On Fri, Feb 17, 2017 at 01:39:01PM -0000, Bjarni Runar Einarsson wrote:
> If the system doesn't have enough entropy, and generates entropy
> too slowly to create a key within a "reasonable time frame",
> would it be possible to detect that and fail early?
Hm. I guess you could run a timer and abort the key generation (e.g. kill the
process) if it's taking you too long.
> Of course, anything that can be done to speed up key generation
> would be ideal
ECC keys are super fast to generate.
I've seen people installing havegd in virtual machine environments
to emulate entropy.
More information about the Gnupg-devel