Re: entropy + openSSL question
From: Steffen Dettmer (steffen@dett.de)
Date: 02/22/03
- Previous message: focus-linux: "Fw: goldfish"
- In reply to: Felix Cuello: "entropy + openSSL question"
- Next in thread: Simon Thornton: "RE: openSSL Key generation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 22 Feb 2003 13:24:55 +0100 From: Steffen Dettmer <steffen@dett.de> To: focus-linux@securityfocus.com
* Felix Cuello wrote on Tue, Feb 18, 2003 at 22:32 -0300:
> There´s a secure form to gain entropy in a system to generate a really
> secure private key using openSSL??
Maybe you can take a look how www.random.org generates random
numbers (sampling a microphone LSB of street noise basically).
Maybe you use some radio antenna on some frequency where no
station sends and sample LSB slowly, or get some radioactivitiy
detector. The conventional way of rolling a dice (or many for
many times) can be used also, it's no joke, there are people who
dice out payment security keys.
> Then... I start again with my first question. there´s a good way to
> generate entropy??? [Suppose that the machine who generates the key will
> not have much interrupts because anybody are in front of the keyboard to
> generate it]
I think the solution is simple, a secure environment is not
networked, so you need a console there anyway. Well, if the
system activity is too low, install doom or whatever and play a
little or watch some VideoCDs, whatever. Maybe compile something
in the background, shouldn't be too difficult to generate some
load.
oki,
Steffen
-- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
- Next message: Jennifer Fountain: "Red Hat Network updates"
- Previous message: focus-linux: "Fw: goldfish"
- In reply to: Felix Cuello: "entropy + openSSL question"
- Next in thread: Simon Thornton: "RE: openSSL Key generation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
