Profile Image

Joanna Rutkowska

@rootkovska ↗

Deleted No
Hibernated No
Last Checked Dec. 7, 2019

Created

Wed May 08 08:40:10 +0000 2019

Likes

27

Retweets

7

Source

Twitter for iPad

View Raw Data

JSON Data

View on Twitter

Likely Available
Profile Image

Joanna Rutkowska @rootkovska

RDRAND might be optional for traditional computing, but (seems) required for envlave-based computing. RDRAND is the source of entropy for code in enclaves, which the OS cannot see nor compromise. So, if we don’t want to trust the OEM+devices+OS+admins, we must(?) trust RDRAND :/ — PolitiTweet.org

Ben Laurie @BenLaurie

Linux still hasn't figured out that there's enough entropy from device attachment timings very early in the boot. A… https://t.co/blOz3S6tGq

Posted May 8, 2019

Preceded By

Profile Image

Joanna Rutkowska @rootkovska

RT @evainfeld: Meanwhile in Poland, 52 year old Ela Podleśna was just arrested for making this image. Let's spread it. https://t.co/hBNx9S… — PolitiTweet.org

Posted May 8, 2019 Retweet

Followed By

Profile Image

Joanna Rutkowska @rootkovska

I’ve added the question marks in the above tweet, because I thought there perhaps could be ways to generate entropy inside enclaves by using some non-intercept-able instructions still? RDTSC-like counters? (But not RDTSC obviously). — PolitiTweet.org

Posted May 8, 2019