Open mithro opened 8 years ago
FlorianUekermann
commented
6 years ago Maybe there are ways to do this without additional hardware. Would something similar to the approach Gniibe takes with NeuG be an option?
Documenting an approach that is straightforward to implement would be great to get some peer review and avoid broken homemade rngs.
mithro
commented
6 years ago Keith Packard was suggesting that we use a good random number source to bake some random data into the flash. Then as you use the random data you can clear it until you run out. As you only need the true random data to seed a pseudo random number generator it should last quite a while...
mithro
commented
6 years ago I'm no security / crypto expert however
FlorianUekermann
commented
6 years ago That sounds fine and fast for cases where you don't need cryptographically secure numbers. However, the application I had in mind was crypto.
So some (slow) source of true randomness would be great to seed a CPRNG with low frequency. Not an expert either, so I would very much like to hear what Keith, Gniibe or other experts think.
gl-sergei
commented
6 years ago There is Neug port for Tomu here: https://github.com/im-tomu/chopstx/blob/efm32/mcu/adc-efm32.c and https://github.com/im-tomu/chopstx/blob/efm32/u2f/neug.c), would be great if someone could audit it.
There is also Fortuna PRNG implemented by Si Labs https://www.silabs.com/documents/public/application-notes/AN0806.pdf for your consideration.
Something like the http://altusmetrum.org/ChaosKey/