10 Feb
2025
10 Feb
'25
4:08 p.m.
On Mon, 10 Feb 2025 15:09:06 +1300, Peter Reutemann quoted:
' ... this capability also undermines AMD's secure encrypted virtualization and root-of-trust security mechanisms.'
No single source of random numbers should ever be considered entirely trustworthy. But if you can combine a bunch of them, in such a way that, as long as at least one of them can still be trusted (you don’t have to know which one(s)), the results will be good, then that makes any attacker’s job that much harder. This is the basis behind Fortuna <https://en.wikipedia.org/wiki/Fortuna_(PRNG)>.