OpenSSL OpenSSL - User

Hardware random number generator

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
2 messages Options
Wai Wu
Reply | Threaded
Open this post in threaded view
|

Hardware random number generator

Wai Wu
 
I would like to know your opinions on commercial hardware random number
generators. Are they worth the money? How do they compare to the
/dev/random device? Thnx.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Michael Sierchio
Reply | Threaded
Open this post in threaded view
|

Re: Hardware random number generator

Michael Sierchio
Wai Wu wrote:

> I would like to know your opinions on commercial hardware random number
> generators. Are they worth the money? How do they compare to the
> /dev/random device? Thnx.

I've written extensively about this elsewhere.  The devices are properly
termed RBGs (random bit generators), and they produce very high quality,
cryptographically useful random bit streams.  The Intel chip on many
Intel Mobos has been extensively analyzed by Paul Kocher and others.

In summary, these are useful for stirring the entropy pool, but are
generally have maximum bit rates that are well below what a busy server
may need for random material, including ephemeral keys, nonces, padding,
etc.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Free forum by Nabble Edit this page