Joanna Rutkowska

@rootkovska ↗

Deleted No

Hibernated No

Last Checked Nov. 19, 2022

Created

Wed May 08 08:42:30 +0000 2019

Likes

Retweets

Source

Twitter for iPad

View Raw Data

JSON Data

View on Twitter

Likely Available

Joanna Rutkowska @rootkovska

I’ve added the question marks in the above tweet, because I thought there perhaps could be ways to generate entropy inside enclaves by using some non-intercept-able instructions still? RDTSC-like counters? (But not RDTSC obviously). — PolitiTweet.org

Posted May 8, 2019

Preceded By

Joanna Rutkowska @rootkovska

RDRAND might be optional for traditional computing, but (seems) required for envlave-based computing. RDRAND is the source of entropy for code in enclaves, which the OS cannot see nor compromise. So, if we don’t want to trust the OEM+devices+OS+admins, we must(?) trust RDRAND :/ — PolitiTweet.org

Linux still hasn't figured out that there's enough entropy from device attachment timings very early in the boot. A… https://t.co/blOz3S6tGq

Posted May 8, 2019

Followed By

Joanna Rutkowska @rootkovska

RT @gnupg: GnuPG's #OpenPGP (gpg) and #SMIME (gpgsm) implementation approved for restricted communication in Germany and Europe. #windows… — PolitiTweet.org

Posted May 8, 2019 Retweet