Thread-topic: Analyzis of Linux random number generator
This paper analyzes the Linux random number generator. The LRNG
algorithm is complex and includes a large state
made of three different storage pools, a complex mechanism for adding
entropy from system events, and an extraction
algorithm based on a shift register and several SHA-1 operations.
We showed that these layers add complexity to the implementation but do
not prevent attacks on the forward
security of the LRNG. In addition we described weaknesses in the OpenWRT
Linux distribution.
Our study was conducted on the latest (at the time) Linux kernel,
labeled version 2:6:10, which was released on
December 24, 2004. Since then the kernel kept developing. Lately,
version 2:6:15 was released in January 2006, and
patches are being published since then4.
