Collaborate Disseminate
I’m reading a lot about entropy on macOS…
I know it doesn’t use Yarrow anymore as per this FIPS 140-02 doc a NIST compliant DRBG.
I read a lot:
https://github.com/briansmith/ring/pull/398
How can I measure (and increase… Continue reading Is reading from /dev/urandom on macOS Catalina a safe way to produce cryptographically secure data?
I noticed that when reading from /dev/random, I have a very real impact on the entropy available on my linux box.
(reading from /proc/system/kernel/random/entropy_avail),
Yet when reading from /dev/urandom, (I understand se… Continue reading entropy change when reading from /dev/urandom vs /dev/random
Currently I am using haveged on my server as source of entropy.
My Server is used as KVM hypervisor, to run virtual machines.
I did not use haveged at the beginning, and I noticed the VMs were draining the entropy pool from… Continue reading using HW random number generator as source of entropy
Hackaday Editors Elliot Williams and Mike Szczys talk turkey on the latest hacks. Random numbers, art, and electronic geekery combine into an entropic masterpiece. We saw Bart Dring bring new life to a cool little multi-pen plotter from the Atari age. Researchers at UCSD built a very very very slow …read more
Are you waiting for something that may never happen? Maybe it’s the end of your ennui, or the release of Half Life 3. While you wait, why not build a Godot Machine? Then you can diversify your portfolio and wait for two things that could happen today, tomorrow, or at …read more
Continue reading Godot Machine is the Project You’ve Been Waiting For
Entropy or randomness is a quantitative measure of security strength for various types of passcodes, but in current times with digital technology, breaches, and cracking tools it seems that lifetime should also be a factor in determining “… Continue reading Quantify security strength from entropy and lifetime
Iphone uses by default 6-digit PIN that has an entropy of 19.93 bits
When iPhone processes the fingerprint, how much entropy does it have?
How long should standard passphrase be until it is as secure as touch id fingerprint… Continue reading How much entropy does Apple Touch ID sensor read fingerprint has?
Considering the absolutely critical role that entropy plays in the generation of keys, I am wondering if there is an easy way to use diceware (true random numbers) to generate an OpenPGP key with gnupg?
If I have a JavaScript CSPRNG such as isaac.random(), and I seed it using a truly random number T as such: isaac.seed(T), does this make the result of the CSPRNG more, less, or equally random?
I would imagine that with a CSP… Continue reading If I seed a CSPRNG with a truly random number and call the output, does this make the number more, less or equally "random"?
I need some viable sources for entropy to seed a CSPRNG.
So far, I have:
JS Events
Web Crypto API
performance.now()
Timing for xmlHTTPRequests
etc.
Are there any other viable/secure entropy sources that I can use/access i… Continue reading What are some viable, secure sources of entropy for a CSPRNG?