[gnutls-dev] Feature request: not really random session keys

[Nikos Mavrogiannopoulos]

> I would like to see an additional API which allows code to degrade
> session key randomness to a mere PRNG (i.e. /dev/urandom instead of
> /dev/random).  In a theoretical sense, this sacrifices Perfect Forward
> Secrecy

This is not really true. Only if you consider the /dev/urandom algorithms
and the libgcrypt PRNG broken.

regards,
Nikos