From owner-freebsd-arch  Tue Jun  6 13:22:12 2000
Delivered-To: freebsd-arch@freebsd.org
Received: from cypherpunks.ai (cypherpunks.ai [209.88.68.47])
	by hub.freebsd.org (Postfix) with ESMTP
	id B7B9537B722; Tue,  6 Jun 2000 13:22:02 -0700 (PDT)
	(envelope-from jeroen@vangelderen.org)
Received: from vangelderen.org (grolsch.ai [209.88.68.214])
	by cypherpunks.ai (Postfix) with ESMTP
	id 12F525D; Tue,  6 Jun 2000 16:21:59 -0400 (AST)
Message-ID: <393D5D46.6BCACDE4@vangelderen.org>
Date: Tue, 06 Jun 2000 16:21:26 -0400
From: "Jeroen C. van Gelderen" <jeroen@vangelderen.org>
X-Mailer: Mozilla 4.72 [en] (X11; I; Linux 2.2.12 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: Dan Moschuk <dan@FreeBSD.org>
Cc: Mark Murray <mark@grondar.za>, arch@FreeBSD.org, phk@FreeBSD.org
Subject: Re: (2nd iteration) New /dev/(random|null|zero) - review, please
References: <200006051720.TAA18713@gratis.grondar.za> <393BEE84.BBAD3E82@vangelderen.org> <20000606160118.C3351@spirit.jaded.net>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Dan Moschuk wrote:
> | > o The RNG is slow; the others are much faster than their originals.
> |
> | Can be tweaked. Use a 256-bit cipher like Rijndael and build a hash
> | out of it. Would improve security too as the entropy pool would hold
> | 256 bits. You can also pre-generate a few KB of random bits.
> 
> Because of the significant speed decrease in using Yarrow, I'd like to see
> us keep the current implementation around, and having Yarrow as an
> option or psuedo-device to be used instead.

Yarrow -when finished- is not noticably slower than our current
implementation of /dev/[u]random. Yarrow does one block encryption
for every output block and a generator gate every 10 blocks. This
would allow for at least 40 mbit/s output on a 200 Mhz PPro when 
using Rijndael/256/256.

Cheers,
Jeroen
-- 
Jeroen C. van Gelderen          o      _     _         _
jeroen@vangelderen.org  _o     /\_   _ \\o  (_)\__/o  (_)
                      _< \_   _>(_) (_)/<_    \_| \   _|/' \/
                     (_)>(_) (_)        (_)   (_)    (_)'  _\o_


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message