cryptocoding
cryptocoding copied to clipboard
Guidelines for low-level cryptography software
I have a (1)suggestion and a (2)question about the "Compare secret strings in constant time". (1) I guess the Cryptocoding resource is supposed to be an introduction beside giving expertise....
# getentropy(2) on OpenBSD Your text suggests using [getentropy(2)](https://man.openbsd.org/getentropy.2) on OpenBSD: > On OpenBSD, use getentropy(), which has a similar behavior and predates Linux' syscall. getentropy(2) is meant to be...
LibreSSL's `getentropy_urandom()` calls `gotdata()` which checks if the data is not all zeros. If you are calling this for short random integers, then all zeros is a very possible random...
Like with older AMDs: https://www.dvhardware.net/article70868.html > the chip starts returning non-random data (when random data is expected) via the RdRand instruction following a suspend/resume cycle.
e.g. about naive modulo vs rejection sampling "Pick random objects really randomly"?