I think you misunderstand my point, we're continually revealing tiny fractions o... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

Taniwha on Aug 19, 2018 | parent | context | favorite | on: Myths about /dev/urandom (2014)

I think you misunderstand my point, we're continually revealing tiny fractions of a bit of the internal state = hopefully really tiny fractions, an AES stream doesn't reveal the key, but other places reveal the direct output of the random number generator (TCP sessions are a great example, various nonces), all those tiny fractions can add up, but provided we add entropy faster than we expose all those little bits we're probably OK

wolf550e on Aug 19, 2018 [–]

If the output of the random number generator used in tcp sessions is aes-ctr keyed by hash of entropy pool and aes does not reveal the key, then the output of the random number generator used in tcp sessions does not reveal the entropy pool.

What you wrote is magical thinking.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact