[openssl-users] Clearing up some of my mistakes on serial number
rgm at htt-consult.com
Sun Aug 20 14:15:27 UTC 2017
On 08/20/2017 09:32 AM, Viktor Dukhovni wrote:
>> On Aug 20, 2017, at 8:35 AM, Robert Moskowitz <rgm at htt-consult.com> wrote:
>> It is 64 - 160 BITS
> Correct, with the word "cryptographically random" somewhere in
> there, for at least 64 of the bits.
>> Which is 8 - 20 OCTETS
> Correct, since an "octet" is 8 bits.
>> or 4 - 10 BYTES
> No, a "byte" nowdays is the same as an "octet", though there have been
> variant definitions of byte, while "octets" have always been 8 bits.
I am going back to bed.... :)
But my bit collision analysis still holds true. Collisions are not a
concern if openssl rand is a good prf.
More information about the openssl-users