Re: [gentoo-hardened] Bought an "entropy-key" - very happy

public inbox for gentoo-hardened@lists.gentoo.org
 help / color / mirror / Atom feed

From: Ed W <lists@wildgooses.com>
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] Bought an "entropy-key" - very happy
Date: Thu, 25 Mar 2010 23:53:46 +0000	[thread overview]
Message-ID: <4BABF78A.6000401@wildgooses.com> (raw)
In-Reply-To: <4BABC9BC.5961.1699834F@pageexec.freemail.hu>

On 25/03/2010 19:38, pageexec@freemail.hu wrote:
>
>> That somebody with a few probes and a 50 quid USB logic analyser can't
>> capture the entropy that was delivered to the system.  (One of the
>> target markets is installation in shared co-location facilities.)
>>      
> do they also protect against impersonation? from your other answers
> i infer that there's some (mutual?) authentication between the device
> and the kernel, so it should be possible ;).
>
>
>    

That's what it says here:
     http://www.entropykey.co.uk/tech/

It certainly needs an encryption key on the userspace daemon bit, which 
unless the person coding is very silly, usually implies that the PC is 
defended against impersonation

It seems way overkill for what I wanted, but the end result is that it 
does seem to be a very well thought out device, even more so considering 
all the other hardware devices I found through google are in the 400 
euro area (and at least two I looked at were thunking great big 
bricks...).  This thing is well inside my toy buying threshold...

Ed W

next prev parent reply	other threads:[~2010-03-26  0:02 UTC|newest]

Thread overview: 20+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2010-03-23 20:39 [gentoo-hardened] Bought an "entropy-key" - very happy Ed W
2010-03-23 21:02 ` lists
2010-03-25 13:10   ` Rob Kendrick
2010-03-25 17:50     ` pageexec
2010-03-25 20:12       ` Rob Kendrick
2010-03-25 19:38         ` pageexec
2010-03-25 23:53           ` Ed W [this message]
2010-03-26  0:36           ` Rob Kendrick
2010-03-25 20:17       ` Ed W
2010-03-25 20:21         ` Rob Kendrick
2010-03-25 13:30   ` Ed W
2010-03-25 19:23     ` lists
2010-03-25 19:34       ` Tóth Attila
2010-03-25 20:11       ` Rob Kendrick
2010-03-25 20:34         ` Ed W
2010-03-25 20:41           ` RB
2010-03-25 21:08           ` Tom Hendrikx
2010-03-26 14:15           ` Brian Kroth
2010-03-26 15:19             ` Rob Kendrick
2010-03-27 13:11             ` Ed W

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4BABF78A.6000401@wildgooses.com \
    --to=lists@wildgooses.com \
    --cc=gentoo-hardened@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox