Edin Dizdarevic wrote:
At the CCC congress recently in Berlin a discussion came up about randomness problems and somebody (fefe ;)) said, that the Intel solution is not that bad, since the board with it cost only a few cents more and is far better than /dev/(u)random.
Better in what respect? It's arguably a higher-quality source of cryptographically useful random bits, but has a very slow maximum bit rate. It's still only applicable as a seed for software PRNG, at least on a server that must produce large amounts of key material, random pad, nonces, etc.
These comments are meant to apply to all hardware RBGs. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]