[openssl-dev] Work on a new RNG for OpenSSL

Blumenthal, Uri - 0553 - MITLL uri at ll.mit.edu
Mon Jun 26 16:31:15 UTC 2017


      My thoughts.
    
      Randomness should be whitened.  Anything feed into an randomness pool, should be mixed in and run through SHA256.
                    pool = SHA256(pool || new-randomness)
    
Pseudorandomness of the output has been a design goal/requirement only in SHA-3 family. Any prior hash function’s exhibition of this property is coincidental.

Therefore I suggest using SHA3 instead.
 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5211 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20170626/90a265db/attachment.bin>


More information about the openssl-dev mailing list