Module Name: src
Committed By: riastradh
Date: Fri Jul 15 15:23:43 UTC 2016
Modified Files:
src/lib/libc/gen: arc4random.3
Log Message:
Number the properties. Identify the key erasure property by name.
To generate a diff of this commit:
cvs rdiff -u -r1.19 -r1.20 src/lib/libc/gen/arc4random.3
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/lib/libc/gen/arc4random.3
diff -u src/lib/libc/gen/arc4random.3:1.19 src/lib/libc/gen/arc4random.3:1.20
--- src/lib/libc/gen/arc4random.3:1.19 Mon Nov 17 18:41:29 2014
+++ src/lib/libc/gen/arc4random.3 Fri Jul 15 15:23:43 2016
@@ -1,4 +1,4 @@
-.\" $NetBSD: arc4random.3,v 1.19 2014/11/17 18:41:29 riastradh Exp $
+.\" $NetBSD: arc4random.3,v 1.20 2016/07/15 15:23:43 riastradh Exp $
.\"
.\" Copyright (c) 2014 The NetBSD Foundation, Inc.
.\" All rights reserved.
@@ -112,7 +112,7 @@ The
functions provide the following security properties against three
different classes of attackers, assuming enough entropy is provided by
the operating system:
-.Bl -bullet -offset abcd
+.Bl -enum -offset abcd
.It
An attacker who has seen some outputs of any of the
.Nm
@@ -131,6 +131,12 @@ One
means the result of any single request to an
.Nm
function, no matter how short it is.
+.Pp
+The second property is sometimes called
+.Sq forward secrecy ,
+.Sq backtracking resistance ,
+or
+.Sq key erasure after each output .
.Sh IMPLEMENTATION NOTES
The
.Nm
