IETF Logo Mail Archive

ID ACTION:draft-ietf-security-randomness-00.txt

Internet-Drafts@CNRI.Reston.VA.US Fri, 26 March 1993 20:48 UTC

Received: from CNRI.RESTON.VA.US by IETF.CNRI.Reston.VA.US id aa11884; 26 Mar 93 15:48 EST
Received: from ietf.cnri.reston.va.us by CNRI.Reston.VA.US id aa05432; 26 Mar 93 15:47 EST
Received: from ietf.cnri.reston.va.us by IETF.CNRI.Reston.VA.US id aa11849; 26 Mar 93 15:47 EST
Received: from [127.0.0.1] by IETF.CNRI.Reston.VA.US id aa11839; 26 Mar 93 15:47 EST
Mime-Version: 1.0
Content-Type: Multipart/Mixed; Boundary="NextPart"
To: IETF-Announce:;
Sender: ietf-announce-request@IETF.CNRI.Reston.VA.US
From: Internet-Drafts@CNRI.Reston.VA.US
Reply-to: Internet-Drafts@CNRI.Reston.VA.US
Subject: ID ACTION:draft-ietf-security-randomness-00.txt
Date: Fri, 26 Mar 1993 15:47:38 -0500
X-Orig-Sender: cclark@CNRI.Reston.VA.US
Message-ID: <9303261547.aa11839@IETF.CNRI.Reston.VA.US>

A New Internet Draft is available from the on-line Internet-Drafts 
directories.                                                          

       Title     : Randomness Requirements for Security               
       Author(s) : D. Eastlake, S. Crocker, J. Schiller
       Filename  : draft-ietf-security-randomness-00.txt
       Pages     : 21

At the heart of many security systems is the assumption that it is 
possible to generate secret quantities that are very hard for an 
adversary to guess.  These include passwords, cryptographic keys, and 
similar quantities.  Choosing such quantities so as to foil a 
resourceful and motivated adversary is surprisingly difficult.  This 
paper points out many pitfalls in using traditional pseudo-random 
number generation techniques for choosing such secrets, recommends the
use of truly random hardware techniques, provides suggestions to 
ameliorate the problem when a hardware solution is not available, and 
gives examples of how large such quantities need to be for some 
particular applications.                                              

Internet-Drafts are available by anonymous FTP.  Login with the	
username "anonymous" and password "guest".  After logging in,
Type "cd internet-drafts".
     "get draft-ietf-security-randomness-00.txt".
 
Internet-Drafts directories are located at:	
	                                                
     o  East Coast (US)                          
        Address:  nnsc.nsf.net (128.89.1.178)	
	                                                
     o  West Coast (US)                          
        Address:  ftp.nisc.sri.com (192.33.33.22)
							
     o  Pacific Rim                              
        Address:  munnari.oz.au (128.250.1.21)	
	                                                
     o  Europe                                   
        Address:  nic.nordu.net (192.36.148.17)	
	                                                
Internet-Drafts are also available by mail.	
	                                                
Send a message to:  mail-server@nisc.sri.com. In the body type: 
     "SEND draft-ietf-security-randomness-00.txt".
							
For questions, please mail to internet-drafts@cnri.reston.va.us.
							

Below is the data which will enable a MIME compliant Mail Reader 
implementation to automatically retrieve the ASCII version
of the Internet Draft.
ftp://nnsc.nsf.net/internet-drafts/draft-ietf-security-randomness-00.txt"><ftp://nnsc.nsf.net/internet-drafts/draft-ietf-security-randomness-00.txt>

v2.23.0 | Report a Bug | By Email