@cryptolicious The problem with the Guardian quote is that now we actually have to speculate about this. It would be better if we didn't.
@cryptolicious @matthew_d_green Most software doesn't have a need to trust Intel's PRNG, but its output is useful to mix into another PRNG.
-
-
@BRIAN_____@cryptolicious On some systems with limited entropy sources, that could turn it into the de-facto RNG. -
@matthew_d_green@cryptolicious Is that a realistic scenerio? If you follow a rule of "never trust any one source" you'll never get there. -
@BRIAN_____@matthew_d_green Well, to make sure people don't screw up implementation, one woudl hope for one trusted entropy source. -
@cryptolicious@BRIAN_____@matthew_d_green Like the highly recommended Dual_EC_DRBG
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.