| 1 |
> > > I have no relationship with the entropy-key guys other than being |
| 2 |
> > > a happy customer. They seem like a small shop and I think they deserve |
| 3 |
> > > a plug (and really need to work on their presence via google... |
| 4 |
> > > Searches on this stuff only turn up $400 alternatives... Sheesh) |
| 5 |
> > |
| 6 |
> > I'm a bit puzzled how that offers much security. |
| 7 |
> > Is the advantage that the algorithm for PRNG has to be extracted |
| 8 |
> > from the chip inside \ the key before it can be abused? |
| 9 |
|
| 10 |
There is no PRNG inside the key. It's a hardware true random number |
| 11 |
generator. What makes the Entropy Key different from most other |
| 12 |
plug-in entropy devices is that it goes to extraordinary lengths to |
| 13 |
make sure the entropy that is injected into your pool can't be sniffed |
| 14 |
before it gets there, as well as running loads of statistics to make |
| 15 |
sure the device itself isn't being attacked. |
| 16 |
|
| 17 |
(Disclaimer: I /do/ have a relationship with the entropy key guys.) |
| 18 |
|
| 19 |
B. |
Archives