[Help-gnutls] Re: Alternate random device for certtool
Nikos Mavrogiannopoulos
nmav at gnutls.org
Mon Dec 8 15:35:42 CET 2008
On Mon, Dec 8, 2008 at 10:53 AM, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:
> On Fri, Dec 05, 2008 at 10:06:38PM +0200,
> Nikos Mavrogiannopoulos <nmav at gnutls.org> wrote
> a message of 66 lines which said:
>
>> There are many parts in a typical PC that can feed a prng with
>> non-deterministic data. Typical examples are the network card and
>> sound card (mic etc), hard disks, memory accesses, interrupts,
>> thermal sensors etc.
>
> Not all are equal. See RFC 4086 <http://www.ietf.org/rfc/rfc4086.txt>
> for a discussion of why the hard disk is better than the network card.
Of course they are not. What I say is that the PRNG should be able to
use them all at no cost.
regards,
Nikos
More information about the Gnutls-help
mailing list