[email protected] (David Wagner) writes:
> Incrementing the entropy counter based on externally observable
> values is dangerous.
How do you want to collect any entropy with such a requirement in
place? Computers tend to send out a lot of information on the air.
BTW, I still think that the entropy estimate for mouse movements is
much too high. And the compression function used probably doesn't
have the intended property.
--
Florian Weimer [email protected]
University of Stuttgart http://cert.uni-stuttgart.de/
RUS-CERT +49-711-685-5973/fax +49-711-685-5898