BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] How do I add entropy?
- Subject: [Discuss] How do I add entropy?
- From: bill.n1vux at gmail.com (Bill Ricker)
- Date: Sun, 7 Sep 2014 12:38:50 -0400
- In-reply-to: <540C551D.4000902@borg.org>
- References: <2091574.2kyEmHr34c@thinkpad> <540C551D.4000902@borg.org>
On Sun, Sep 7, 2014 at 8:52 AM, Kent Borg <kentborg at borg.org> wrote:
> A public key of 4096-bits is like a much shorter symmetric key (~200-bits?),
> so unless you are generating a bunch of keys, you shouldn't have any
> problem.
An RSA key of size 4096 bits has *security* equivalent somewhere
between 128 and 200 bits (which sometimes gets rounded down to 128
since < 256 bits), but that is *not* a measure of how much entropy its
generation will consume.
Generating two 2kbit primes will consume a *lot* of entropy from
/dev/random, because each random candidate-prime must be tested by
hundreds of random 'witness' numbers (potentially upto 1kbit in size).
Generating one 256bit random symmetric key would be far far more
efficient in terms of entropy consumed, but that doesn't get you all
the key management and authentication benefits of Public Key.
(Generating RSA keys on a virtual box could be very very slow as they
don't have hardware entropy sources available.)
--
Bill Ricker
bill.n1vux at gmail.com
https://www.linkedin.com/in/n1vux
- Follow-Ups:
- [Discuss] How do I add entropy?
- From: kentborg at borg.org (Kent Borg)
- [Discuss] How do I add entropy?
- References:
- [Discuss] How do I add entropy?
- From: bill at horne.net (Bill Horne)
- [Discuss] How do I add entropy?
- From: kentborg at borg.org (Kent Borg)
- [Discuss] How do I add entropy?
- Prev by Date: [Discuss] What key lengths are currently adequate?
- Next by Date: [Discuss] mail config
- Previous by thread: [Discuss] How do I add entropy?
- Next by thread: [Discuss] How do I add entropy?
- Index(es):
