[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [gnutls-dev] Feature request: not really random session keys
From: |
Florian Weimer |
Subject: |
Re: [gnutls-dev] Feature request: not really random session keys |
Date: |
Wed, 18 Jan 2006 14:39:28 +0100 |
* Nikos Mavrogiannopoulos:
>> I would like to see an additional API which allows code to degrade
>> session key randomness to a mere PRNG (i.e. /dev/urandom instead of
>> /dev/random). In a theoretical sense, this sacrifices Perfect Forward
>> Secrecy
>
> This is not really true. Only if you consider the /dev/urandom algorithms
> and the libgcrypt PRNG broken.
Yes, that's why I wrote "theoretical". 8-) I think it's completely
acceptable to use a PRNG (instead of a real RNG) for those session
keys.
What I don't understand is that you say you are already using the PRNG
source, and I find this hard to match with the source code and some
reports from the trenches.
[gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/18
Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/18
- Re: [gnutls-dev] Feature request: not really random session keys,
Florian Weimer <=
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/18
- Re: [gnutls-dev] Feature request: not really random session keys, Werner Koch, 2006/01/19
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Florian Weimer, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Nikos Mavrogiannopoulos, 2006/01/30
- Re: [gnutls-dev] Feature request: not really random session keys, Andreas Metzler, 2006/01/30
[gnutls-dev] Re: Feature request: not really random session keys, Simon Josefsson, 2006/01/30