Generally, entropy only grows. However, there are cases where
it goes down - for example, consider generating a one time
pad where someone managed to use a side channel to
steal its contents. By combining the seemingly random
pad with the stolen contents we have reversed the entropy.
This actually happens within VMs e.g. when time is reversed due
to snapshoting. Existing approaches for VMs include Microsoft's
VM GEN ID.
This draft proposes a feature in virtio rng for reporting such
leaks.
Patches 1,2 refactor existing draft text. Patch 3 adds new functionality.
TODO:
document theory of operation
add conformance clauses
Michael S. Tsirkin (3):
rng: move to a file of its own
rng: be specific about the virtqueue
rng: leak detection support
content.tex | 43 +--------------------
virtio-rng.tex | 102 +++++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 103 insertions(+), 42 deletions(-)
create mode 100644 virtio-rng.tex
--
MST
---------------------------------------------------------------------
To unsubscribe, e-mail: virtio-dev-unsubscr...@lists.oasis-open.org
For additional commands, e-mail: virtio-dev-h...@lists.oasis-open.org
