Sunday, April 28, 2024
Homepage · kernel
 Popular · Latest · Hot · Upcoming
6
rated 0 times [  6] [ 0]  / answers: 1 / hits: 1416  / 1 Year ago, sun, may 7, 2023, 6:58:39

This Ars Technica article reveals the likelihood that CPU based random number generators "RDRAND" and "Padlock" have been crafted with NSA input to benefit NSA code cracking.



Do the current Ubuntu distros utilize those routines on machines with Intel and VIA CPUs?



If so, can those generators be bypassed by installing other code?



A search on "random number" did not reveal either, and since privacy is important to many, I do believe this is of general interest and not an obscure issue.


More From » kernel
 Answers
2

The source of random numbers in Ubuntu come from the Linux kernel, specifically /dev/random and /dev/urandom (pseudo-random). The difference between the two is that /dev/random may be blocking while /dev/urandom does not but may not be as random.



That aside, RdRand is just one of many sources of entropy used in the Linux kernel and as long as userspace applications don't use RdRand directly but make a system call to the kernel, there is no issue with Ubuntu's random output.



Here is a link to Slashdot story where Linus explained why a petition removing RdRand from the kernel would be stupid


[#27663] Monday, May 8, 2023, 1 Year  [reply] [flag answer]
Only authorized users can answer the question. Please sign in first, or register a free account.
itchlos
Add To Favorites
Follow
Total Points: 486
Total Questions: 115
Total Answers: 110
Location: Macau
Member since Fri, Apr 28, 2023
1 Year ago
itchlos questions
Fri, Apr 8, 22, 15:40, 2 Years ago
Wed, Nov 10, 21, 23:32, 3 Years ago
Mon, Jun 14, 21, 10:10, 3 Years ago
Mon, Nov 28, 22, 20:56, 1 Year ago
Sun, Aug 1, 21, 19:12, 3 Years ago
View All
;