Re: One-line password generator

To: debian-user@lists.debian.org
Subject: Re: One-line password generator
From: "Thomas Schmitt" <scdbackup@gmx.net>
Date: Tue, 29 Aug 2017 14:52:10 +0200
Message-id: <[🔎] 14759754993222590530@scdbackup.webframe.org>
In-reply-to: <[🔎] 20170829120027.GE28420@bitfolk.com>
References: <[🔎] 20170829120027.GE28420@bitfolk.com>

Hi,

Andy Smith wrote:
> https://www.2uo.de/myths-about-urandom/#experts

So it is about how Daniel Bernstein justifies his claim that it is
wrong to say:

  "we can't figure out how to deterministically expand one 256-bit
   /dev/random output into an endless stream of unpredictable keys
   (this is what we need from urandom),"

and right to conclude:

   "For a cryptographer this doesn't even pass the laugh test."

How do cryptographers manage to get this miraculous growth of information
if the only secret is the 256 bit of /dev/random output ?

Why would i need more than 2 exp 256 tries to guess the whole stream ?


(I don't point out that this refers to /dev/random as source of
 /dev/urandom, because i assume that this is only rethorical to
 illustrate the more general question.
 Further i understand that Linux changes the key in the time range
 of minutes. This seems to be a much stronger precaution than
 just a single key.)

(And again, it's not about IT but about math. In practice 2 exp 256
 or 2 exp 384 are enormous numbers.
 Nevertheless, being sloppy in math can bite you in practice.)


Have a nice day :)

Thomas

Reply to:

Follow-Ups:
- Re: One-line password generator
  - From: Zenaan Harkness <zenaan@freedbms.net>

References:
- Re: One-line password generator
  - From: Andy Smith <andy@strugglers.net>

Prev by Date: Re: Future of linux-image-grsec-* packages
Next by Date: Computer friendly blood pressure?
Previous by thread: Re: One-line password generator
Next by thread: Re: One-line password generator
Index(es):
- Date
- Thread