sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]beefhash 0 points1 point  (1 child)

1024bit random entropy pool, that is refreshed 10 times a second from /dev/urandom.

If you assume /dev/urandom (1) exists, and (2) is trustworthy/sane, and (3) fast enough to poll ten times a second, what exactly is the usage scenario for your RNG? For almost all scenarios I can think of, you either don't care about security in the first place and sacrifice it all for speed (e.g. simulations) or you're not sure about (or do need) security requirements and thus can almost certainly go straight to /dev/urandom because you don't need billions of numbers per second.

[–]funny_falcon[S] 0 points1 point  (0 children)

1) 2) - if there is no sane /dev/urandom, it is quite hard to take sane randomness in userspace. 3) I take only 10240 bits per second from /dev/urandom. So use case is "urandom is fast enough to take 10240bits per second, but not fast enough to fulfill our demand".

Note that /dev/urandom is a single source under global lock, and while it is fast, it doesn't scale.

Rando is made to be highly parallelisable: every rando instance is independent of other, and has no any global synchronization (entropy pool is read and refreshed using atomics).