I got this list from "mining your Ps and Qs" Further cryptographic vulnerabilies * Diffie-Hellman, ECDSA * IMAPS, DNSSEC
Further impacts of boot time entropy hole * TCP sequence numbers * ASLR A few more things that come to mind: Session IDs Nonces Optimal Asymmetric Encryption Padding (semantic security) prime/key generation challenge-response (allows playback) If I have time I'll rework this and make a nice list, so if we find bad RNGs we can run down it. -- http://www.subspacefield.org/~travis/ Remediating... LIKE A BOSS
pgpUEAw1H4YXc.pgp
Description: PGP signature
_______________________________________________ RNG mailing list [email protected] http://lists.bitrot.info/mailman/listinfo/rng
