How to connect an external noise source file to openssl-fips-2.0.16

Andy

4/20/23, 9:12 AM

[ECDSA][ECDH] Due to Insufficient Entropy in Operating system of MCU

=> Could not generate random number by using BN_rand() function (security strength fail, and RAND_bytes fail)

Below is my solution:

An external noise source file from TRNG

Eg: (80 bits), this data passed all tests

Connect (1) to OpenSSL by Engine
Invoke BN_rand() again (gather entropy -> seed -> PRNG)

Is this approach ok? if not, any other methods?

Thanks a lot !

0 + 0

random-number-generator

Paul Uszak

4/20/23, 9:42 AM

Have you seen https://github.com/jirka-h/haveged ?

Andy

4/22/23, 8:21 AM

Because we only trust the noise source from TRNG, so I am seeking a way to connect OpenSSL - FIPS to use this noise source

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to connect an external noise source file to openssl-fips-2.0.16

TH: วิธีเชื่อมต่อไฟล์แหล่งที่มาของสัญญาณรบกวนภายนอกกับ opensl-fips-2.0.16

RO: Cum se conectează un fișier sursă de zgomot extern la openssl-fips-2.0.16

RU: определяет схему аутентификации.

VI: Cách kết nối tệp nguồn tiếng ồn bên ngoài với openssl-fips-2.0.16

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.