[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [gnutls-dev] Feature request: not really random session keys
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: [gnutls-dev] Feature request: not really random session keys |
Date: |
Wed, 18 Jan 2006 14:43:41 +0100 |
On 1/18/06, Florian Weimer <address@hidden> wrote:
> Yes, that's why I wrote "theoretical". 8-) I think it's completely
> acceptable to use a PRNG (instead of a real RNG) for those session
> keys.
> What I don't understand is that you say you are already using the PRNG
> source, and I find this hard to match with the source code and some
> reports from the trenches.
Hmmm, I cannot verify it right now, but everything up to STRONG_RANDOM
should have been using /dev/urandom. Only the VERY_STRONG_RANDOM
in libgcrypt should use /dev/random, but this is not used for normal
TLS sessions.
If this is not the case then it's probably a bug either in libgcrypt
or in gnutls.
- [gnutls-dev] Re: Feature request: not really random session keys, (continued)
Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/18
[gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/18
Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/18
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/18
- Re: [gnutls-dev] Feature request: not really random session keys,
Nikos Mavrogiannopoulos <=
- Re: [gnutls-dev] Feature request: not really random session keys, Werner Koch, 2006/01/19
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Andreas Metzler, 2006/01/30
[gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/30
Re: [gnutls-dev] Feature request: not really random session keys, Werner Koch, 2006/01/30