I'm not sure I'd call Fortuna a (unqualified) PRNG since it takes input, but I guess there's no standard terminology and it's definitely not a HWRNG so... okay.
https://www.schneier.com/blog/archives/2014/03/the_security_of_7.html Providing random numbers on computers can be very difficult. Back in 2003, Niels Ferguson and I designed Fortuna as a secure PRNG. Particularly important is how it collects entropy from various processes on the computer and mixes them all together. While Fortuna is widely used, there hadn't been any real analysis of the system. This has now changed. A new paper by Yevgeniy Dodis, Adi Shamir, Noah Stephens-Davidowitz, and Daniel Wichs provides some theoretical modeling for entropy collection and PRNG. They analyze Fortuna and find it good but not optimal, and then provide their own optimal system. Excellent, and long-needed, research. -- http://www.subspacefield.org/~travis/ Remediating... LIKE A BOSS
pgpqTlwTM0TGR.pgp
Description: PGP signature
_______________________________________________ RNG mailing list [email protected] http://lists.bitrot.info/mailman/listinfo/rng
