The random app should not return TRNG entropy
Closed this issue · 2 comments
secworks commented
The get_random function returns entropy from the TRNG core. It should instead use a secure Digital Random Bit Generator (DRBG) such as a Hash_DRBG or CTR_DRBG.
quite commented
In js words, we can develop the randomapp further like:
- Add the same Hash_DRBG I have in the RNG stream
- Add Ed25519 signing of generated data. Possibly also accept a challenge with the get random command from the host
secworks commented
I think that sounds like a great improvement. Go for it!