FreeBSD Developers Will Not Trust Chip-Based Encryption - Slashdot

Catch up on stories from the past week (and beyond) at the Slashdot story archive

×

FreeBSD Developers Will Not Trust Chip-Based Encryption 178

Posted by Soulskill on Wednesday December 11, 2013 @05:05PM from the fool-me-once,-shame-on-you dept.

New submitter srobert writes "An article at Ars Technica explains how, following stories of NSA leaks, FreeBSD developers will not rely solely on Intel's or Via's chip-based random number generators for /dev/random values. The values will first be seeded through another randomization algorithm known as 'Yarrow.' The changes are effective with the upcoming FreeBSD 10.0 (for which the first of three planned release candidates became available last week)."

This discussion has been archived. No new comments can be posted.

FreeBSD Developers Will Not Trust Chip-Based Encryption

Search 178 Comments Log In/Create an Account

Comments Filter:

Very Smart Move (Score:5, Insightful)

by Anonymous Coward writes: on Wednesday December 11, 2013 @05:09PM (#45663917)

They have every reason NOT to trust the chips. Trust, but verify is always the correct way.

Share
twitter facebook
Makes sense ... (Score:5, Insightful)

by MacTO ( 1161105 ) writes: on Wednesday December 11, 2013 @05:20PM (#45664011)

One of the features of open source software is that the code, thus the algorithms, can be examined by a third party. In the case of chips, this is very difficult to do. Most people are stuck trusting that the designer implemented the algorithm they said they did, and that they implemented it properly (the former implying no malice and the latter implying competence). That is particularly true for something like random number generators, which are intended to be non-deterministic as far as the software is concerned so any testing the implementation can only be done statistically. Very few people have the ability to examine the physical design of the chip to check the actual implementation.

Share
twitter facebook
Re:what's that going to accomplish? (Score:5, Insightful)

by houstonbofh ( 602064 ) writes: on Wednesday December 11, 2013 @05:24PM (#45664049)

Because true random in software is computationally expensive. Adding a layer of obfuscation on top of the untrusted hardware gives you a better random cheaply, and avoids potential back-doors in the hardware generator.

Parent Share
twitter facebook
Re:Is there any way to gain trust in a chip? (Score:2, Insightful)

by SuperKendall ( 25149 ) writes: on Wednesday December 11, 2013 @05:43PM (#45664253)

The output can be completely random, but it doesn't matter if someone else has a mechanism to reproduce exactly the same random stream. Or the ability to toggle on the semi-random mode...

Parent Share
twitter facebook
Re:Very Smart Move (Score:3, Insightful)

by celle ( 906675 ) writes: on Wednesday December 11, 2013 @09:24PM (#45666635)

"Trust, but verify"
If you feel you have to verify then you don't trust them. It was bullshit when Reagan said it and it still is.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

390 comments32-Hour Workweek for America Proposed by Senator Bernie Sanders
358 commentsWhat Should Happen to Empty Downtown Office Spaces?
340 commentsHacktivism Erupts In Response To Hamas-Israel War
324 comments'Feedback' Is Now Too Harsh. The New Word is 'Feedforward'
248 commentsWorkers are Resisting Calls to Return to Offices

So you think that money is the root of all evil. Have you ever asked what is the root of money? -- Ayn Rand