[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
Re: [tinydtls-dev] Secure Random Number Generator ?
|
Hello,
yes, AES is as good as 3DES for my proposed approach. I will provide change the code to use AES and provide a github fork for it.
Kind regards
Frank
-----Original Message-----
From: Olaf Bergmann [mailto:bergmann@xxxxxxx]
Sent: Wednesday, May 11, 2016 3:47 PM
To: Frank Gerlach <Frank_Gerlach@xxxxxxxx>
Cc: tinydtls-dev@xxxxxxxxxxx; Dmitry Stoyanovsky <Dmitry_Stoyanovsky@xxxxxxxx>; Aleh Arol <Aleh_Arol@xxxxxxxx>; Siarhei Boika <Siarhei_Boika@xxxxxxxx>
Subject: Re: [tinydtls-dev] Secure Random Number Generator ?
Frank Gerlach <Frank_Gerlach@xxxxxxxx> writes:
> Hello list,
>
> Obviously, a good PRNG (or a hardware RNG) is required for protocols
> like DTLS and TLS.
>
> The default implementation is very, very, very weak.
>
> EPAM could contribute a small, yet secure PRNG mechanism.
>
> It requires just the 3DES algorithm and 16+8 octets of Flash memory
> (in reality a bit more, because the Flash must be written on each boot
> cycle and a single page may wear out before the device-end-of-life) to
> operate. Max Performance (octets/s) is much better than /dev/random.
>
> Are you interested ?
This would be great, especially because /dev/random is a very Linux-Desktop-ish solution.
Grüße
Olaf
