Commit 5f29dc7b authored by Ulrike Uhlig's avatar Ulrike Uhlig
Browse files

Link this for real, and get more coffee..

parent 789a5a24
......@@ -4,12 +4,12 @@
access from user land to the Linux kernel Cryptographically Secure
Pseudo Random Number Generator (CSPRNG). This generator is used for
almost every security protocol, like TLS/SSL key generation, choosing
TCP sequences, ASLR offsets, and GPG key generation
[https://eprint.iacr.org/2006/086.pdf]. In order for this CSPRNG to
indeed be cryptographically secure, it's recommended to seed it with a
'good' entropy source, even though The Linux kernel collects entropy
from several sources, for example keyboard typing, mouse movement, among
others.
TCP sequences, ASLR offsets, and
[https://eprint.iacr.org/2006/086.pdf](GPG key generation) . In order
for this CSPRNG to indeed be cryptographically secure, it's recommended
to seed it with a 'good' entropy source, even though The Linux kernel
collects entropy from several sources, for example keyboard typing,
mouse movement, among others.
Because of Tails' feature of being amnesic, and run from different types
of live devices (from DVDs to USB sticks), special care must be taken to
......@@ -208,14 +208,10 @@ discussing/researching the costs/benefits.
## Also see
* [https://0xacab.org/schleuder/schleuder/issues/194](Schleuder thread
about haveged)
* [Schleuder thread about haveged](https://0xacab.org/schleuder/schleuder/issues/194)
* The
[https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/Studies/LinuxRNG/LinuxRNG_EN.pdf?__blob=publicationFile&v=10](federal
office for IT security in Germany analysed the rng in linux kernel 4.9
and all changes made up to 4.17).
* [https://salsa.debian.org/tookmund-guest/pgpcr/issues/16](checking for
available entropy)
[federal office for IT security in Germany analysed the rng in linux kernel 4.9 and all changes made up to 4.17](https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/Studies/LinuxRNG/LinuxRNG_EN.pdf?__blob=publicationFile&v=10).
* [checking for available entropy](https://salsa.debian.org/tookmund-guest/pgpcr/issues/16)
## Related tickets
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment