Score:1

How to connect an external noise source file to openssl-fips-2.0.16

pe flag

[ECDSA][ECDH] Due to Insufficient Entropy in Operating system of MCU

=> Could not generate random number by using BN_rand() function (security strength fail, and RAND_bytes fail)

Below is my solution:

  1. An external noise source file from TRNG

Eg: (80 bits), this data passed all tests

  1. Connect (1) to OpenSSL by Engine

  2. Invoke BN_rand() again (gather entropy -> seed -> PRNG)

Is this approach ok? if not, any other methods?

Thanks a lot !

Paul Uszak avatar
cn flag
Have you seen https://github.com/jirka-h/haveged ?
Andy avatar
pe flag
Because we only trust the noise source from TRNG, so I am seeking a way to connect OpenSSL - FIPS to use this noise source
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.