Issue #1689 has been updated by alexh. Status changed from Feedback to Closed
robin.carey1 wrote: > Dear Alex, > > You keep referring to it (i.e. /dev/random) as a "CSPRNG"; that is > incorrect. > > CSPRNG is an abbreviation for Cryptographically Secure Pseudo Random Number > Generator. > > What /dev/random should be is a CSRNG (Cryptographically Secure Random > Number Generator) or CRNG (Cryptographic Random Number Generator). Fortuna is a CSPRNG, which is what I'm referring to - its authors certainly say so :) I'm not really going to be arguing with you about this. Whatever is implemented can stay implemented, and no, I'm not aware of every little bit that has or hasn't changed over the last 5 years. I'm closing this. ---------------------------------------- Bug #1689: IBAA recommendation http://bugs.dragonflybsd.org/issues/1689#change-12540 * Author: robin.carey1 * Status: Closed * Priority: Low * Assignee: * Category: Crypto * Target version: 4.2.x ---------------------------------------- Dear DragonFlyBSD bugs. DragonFly uses Bob Jenkins' IBAA CSPRNG for /dev/random. I have been doing some work on this CSPRNG, which is available from: http://www.leopard.uk.com/IBAA64 I have two recommendations to make with regard to the IBAA CSPRNG which is used in DragonFly: (1) Use my rounded up BETA=32/SHIFT=20 values as opposed to the original SHIFT=19 value in the original IBAA CSPRNG/algorithm (details available from above URL) and (2) Use a 32-bit counter. This is a minor modification, which gurantees no bad states (an initial state of all zeroes maps back to an internal state of all zeroes after 256 iterations), and also guarantees a cycle length of at least 2^32. Details on how to implement the counter are available from the above URL. It's a minor modification which has minimal performance impact. Also, a 64-bit version of IBAA is available from the above URL. Matthew Dillon seemed to be interested in that, with regard to the 64-bit x86-64 port of DragonFly (but I haven't heard back from him about that). ---Files-------------------------------- unnamed (1.4 KB) -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://bugs.dragonflybsd.org/my/account
