> “why don’t they” is “money”. More likely "trust". A purpose build instruction ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		josefx on March 30, 2022 \| parent \| context \| favorite \| on: Problems emerge for a unified /dev/*random > “why don’t they” is “money”. More likely "trust". A purpose build instruction with a black box implementation on hardware that has its own hidden OS with direct access to the network is one issue. The fact that Intels CPUs are a bug riddled mess that have been a significant headache to anyone caring about kernel and application layer security is another. Who needs security if disabling all the mitigations makes you look great on benchmarks.

efitz on March 30, 2022 [–]

A HES or a HRNG is observable and testable.

And we trust purpose built security hardware all the time; think crypto accelerator cards and HSMs.

CorrectHorseBat on March 30, 2022 | [–]

It's much harder to test the output of a TRNG

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact