Project

General

Profile

Feature #6116

Audit random seed

Added by Tails over 6 years ago. Updated 9 months ago.

Status:
Confirmed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
Due date:
% Done:

0%

Feature Branch:
Type of work:
Security Audit
Starter:
No
Affected tool:

Description

See the pkg-sysvinit-devel archives, in July and August 2010, for an interesting discussion about random seeds unicity, especially at early boot time.

We should audit such matters in Tails.


Related issues

Related to Tails - Feature #7102: Evaluate how safe haveged is in a virtualized environment Confirmed 04/17/2014
Related to Tails - Feature #5650: rngd Resolved
Related to Tails - Feature #7642: Investigate whether we should resume shipping a static random seed Resolved 09/02/2016
Related to Tails - Feature #7646: Investigate whether we should ship /var/lib/systemd/random-seed Duplicate 07/23/2014
Related to Tails - Feature #7675: Persist entropy pool seeds Duplicate 11/04/2016

History

#1 Updated by intrigeri over 6 years ago

  • Type of work set to Audit

Type of work: Audit

#2 Updated by intrigeri about 6 years ago

  • Subject changed from random seed to Audit random seed
  • Starter set to No

#3 Updated by intrigeri over 5 years ago

  • Related to Feature #7102: Evaluate how safe haveged is in a virtualized environment added

#4 Updated by intrigeri over 5 years ago

#5 Updated by intrigeri over 5 years ago

  • Related to Feature #7642: Investigate whether we should resume shipping a static random seed added

#6 Updated by intrigeri over 5 years ago

  • Related to Feature #7646: Investigate whether we should ship /var/lib/systemd/random-seed added

#7 Updated by intrigeri over 5 years ago

#8 Updated by sycamoreone over 4 years ago

Should this be a hole-in-the-roof also?

#9 Updated by intrigeri over 4 years ago

  • Target version set to Hole in the Roof

#10 Updated by intrigeri almost 4 years ago

  • Blueprint set to https://tails.boum.org/blueprint/randomness_seeding/

#11 Updated by intrigeri almost 4 years ago

  • Type of work changed from Audit to Security Audit

#12 Updated by bertagaz about 3 years ago

  • Target version changed from Hole in the Roof to 2017

We decided at the November 4th meeting to delay this audit until we'll have gone forward on the implementation of our plan (#11897 and #7675).

#13 Updated by BitingBird about 2 years ago

  • Target version changed from 2017 to 2018

#14 Updated by intrigeri 9 months ago

  • Target version deleted (2018)

2018 is over and this did not make it on our roadmap for next year (incomplete team).

Also available in: Atom PDF