https://www.schneier.com/essay-459.html
Systems that send seemingly random information in the clear
are easier to subvert. One of the most effective ways of
subverting a system is by leaking key information--recall the
LEAF--and modifying random nonces or header information is the
easiest way to do that.
...
All random number generators should conform to published and
accepted standards. Breaking the random number generator is
the easiest difficult-to-detect method of subverting an
encryption system. A corollary: We need better published and
accepted RNG standards.
--
http://www.subspacefield.org/~travis/
Remediating... like a BOSS.
pgpEZOwJJZpKq.pgp
Description: PGP signature
_______________________________________________ RNG mailing list [email protected] http://lists.bitrot.info/mailman/listinfo/rng
