Project

General

Profile

Feature #6116

Audit random seed

Added by Tails over 4 years ago. Updated 4 months ago.

Status:
Confirmed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
Start date:
Due date:
% Done:

0%

QA Check:
Feature Branch:
Type of work:
Security Audit

Description

See the pkg-sysvinit-devel archives, in July and August 2010, for an interesting discussion about random seeds unicity, especially at early boot time.

We should audit such matters in Tails.


Related issues

Related to Tails - Feature #7102: Evaluate how safe haveged is in a virtualized environment Confirmed 04/17/2014
Related to Tails - Feature #5650: rngd Resolved
Related to Tails - Feature #7642: Investigate whether we should resume shipping a static random seed In Progress 09/02/2016
Related to Tails - Feature #7646: Investigate whether we should ship /var/lib/systemd/random-seed Duplicate 07/23/2014
Related to Tails - Feature #7675: Persist entropy pool seeds Confirmed 11/04/2016

History

#1 Updated by intrigeri over 4 years ago

  • Type of work set to Audit

Type of work: Audit

#2 Updated by intrigeri about 4 years ago

  • Subject changed from random seed to Audit random seed
  • Starter set to No

#3 Updated by intrigeri over 3 years ago

  • Related to Feature #7102: Evaluate how safe haveged is in a virtualized environment added

#4 Updated by intrigeri over 3 years ago

#5 Updated by intrigeri over 3 years ago

  • Related to Feature #7642: Investigate whether we should resume shipping a static random seed added

#6 Updated by intrigeri over 3 years ago

  • Related to Feature #7646: Investigate whether we should ship /var/lib/systemd/random-seed added

#7 Updated by intrigeri over 3 years ago

#8 Updated by sycamoreone over 2 years ago

Should this be a hole-in-the-roof also?

#9 Updated by intrigeri over 2 years ago

  • Target version set to Hole in the Roof

#10 Updated by intrigeri almost 2 years ago

  • Blueprint set to https://tails.boum.org/blueprint/randomness_seeding/

#11 Updated by intrigeri almost 2 years ago

  • Type of work changed from Audit to Security Audit

#12 Updated by bertagaz about 1 year ago

  • Target version changed from Hole in the Roof to 2017

We decided at the November 4th meeting to delay this audit until we'll have gone forward on the implementation of our plan (#11897 and #7675).

#13 Updated by BitingBird 4 months ago

  • Target version changed from 2017 to 2018

Also available in: Atom PDF