Once upon a long ago I thought that the most reasonable approach to test my hardware random number generator was to use tests that other people have written, so I’d avoid testing my own stuff and missing some critical mistake. Well, things didn’t quite turn out as I expected…
Table of Contents
00:00:30 The Linux
00:02:00 … showing heaps of errors
00:04:02 … due to the way the tests work
00:06:15 Why the NIST FIPS-140 tests are inherently suspicious
00:11:45 Weaknesses in the Linux kernel cryptographic pseudo random number generator
00:13:27 The
00:23:45 State of the art cryptographic pseudo random number generators from ten years ago
00:24:20 News from my hardware random number generator project