RT @tqbf: It’s not crazy for OpenSSL to redesign and simplify its CSPRNG. It is silly to make it MORE complicated. https://github.com/openssl/openssl/pull/3758 …
For me the value of the formal proof is not having to repeat the millions of hours of randomness testing that has been done on AES_CTR_DRBG.
-
-
You’ve lost me here. Why do we need randomness testing on CTR-DRBG? Do we believe AES to be broken?
-
1: Circular logic problem. Proofs are nice, but actual hardcore randomness testing is a big reason to believe that AES isn't broken.
- 1 more reply
New conversation -
-
-
On coding errors: there are no test-vectors for DRBG state post a size-limit-forced reseed. Have asked. For now, proof is main assurance.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.