[openssl-users] using a random number file for generation of keys/certificates

Kevin Long kevinlong206 at gmail.com
Thu Sep 3 18:29:01 UTC 2015


Can I not use the file directly, as to not rely whatsoever on the OS’s PRNG ?



> On Sep 3, 2015, at 11:23 AM, Viktor Dukhovni <openssl-users at dukhovni.org> wrote:
> 
> On Wed, Sep 02, 2015 at 09:53:05PM -0700, Kevin Long wrote:
> 
>> I've been asked to use a hardware random number generator to create the
>> keys/certificates going forward. I have a hardware RNG, and have created
>> several files of random numbers using it, and I would like to know:
> 
> Cat those files into /dev/urandom or /dev/random.  That'll mix them
> into the system's entropy pool.  Then generate keys as usual from
> /dev/urandom.
> 
> -- 
> 	Viktor.
> _______________________________________________
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users



More information about the openssl-users mailing list