Hacker News new | ask | show | jobs
by aidenn0 1044 days ago
Would a CSPRNG be at all an improvement with only a 32 bit seed? Couldn't you still brute force it?
2 comments
a-dub 1044 days ago
i think the bigger problem is that the seed is easily guessed or found, so all the output can be regenerated.

so it's not even 32 bits of entropy, it's some tiny fraction of that. (system times for a few years interval)

link
ryanatdistrust 1044 days ago
As discussed elsethread, it used the lower bits of the time value, so while there is is a fraction of the 2^32 space due to precision loss in the OS time calculations, it is not as simple as "between when this software was released and now, in seconds".
link
ryanatdistrust 1044 days ago
That is correct, you still have 2^32 permutations of possible values.
link
marginalia_nu 1044 days ago
Given it's seeded with system time, depending on the resolution, that may in practice be as low as tens of thousands of possible values (as in time(2) )
link
ryanatdistrust 1044 days ago
2^32 is still incredibly small for crypto and is inexcusable.
link
nullc 1044 days ago
A fact which was unambiguously well known to the authors prior to the report: https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2022...
link