Google advice to seed from /dev/urandom is "exactly what you are NOT supposed to do." http://arstechnica.com/security/2013/08/google-confirms-critical-android-crypto-flaw-used-in-5700-bitcoin-heist/?comments=1&post=25102733#comment-25102733 … Crypto peeps: is this true?
-
-
Replying to @dangoodin001
@dangoodin001 Not a little wrong like “there’s a controversy there”; absolutely wrong like “that’s an urban legend.”2 replies 1 retweet 0 likes -
Replying to @dangoodin001
@dangoodin001 crypto people aren't operational people, and it shows sometimes. Not that seeding from urandom is at all safe.1 reply 0 retweets 0 likes -
Replying to @dangoodin001
@dangoodin001@dakami /dev/urandom is for performance (it never blocks the reader), /dev/random for security/crypto http://man7.org/linux/man-pages/man4/random.4.html …5 replies 1 retweet 1 like
Replying to @ma1
@ma1 @dangoodin001 @dakami @tqbf "/dev/random is not Robust" http://cs.nyu.edu/~dodis/ps/rng.pdf …
10:57 AM - 15 Aug 2013
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.