[Ach] removed outdated info on Linux RNG / haveged
klaus.darilion at nic.at
Mon May 8 14:23:51 CEST 2017
> -----Ursprüngliche Nachricht-----
> Von: Ach [mailto:ach-bounces at lists.cert.at] Im Auftrag von Aaron Zauner
> Linux 4.9+ has a new design for `/dev/urandom`: it XORs RdRAND/SEED with
> ChaCha20 (this design is borrowed from Adam Langley's implementation in
> BoringSSL, also used in libsodium) thus providing a fast and save
> interface for cryptographically secure pseudo random numbers.
And how about older Kernels? There are for sure lots of hardware using older kernels. Better Crypto should also be useful for older kernels, not only new ones.
More information about the Ach