This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Insufficient Entropy

From OWASP

Revision as of 15:36, 29 May 2009 by Deleted user (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

[http://s1.shard.jp/bireba/nortonantivirus.html norton antivirus key code ] [http://s1.shard.jp/olharder/automatic-watch.html heating pad automatic ] [http://s1.shard.jp/galeach/new100.html asia game mtv pad ] [http://s1.shard.jp/olharder/automatic-bread.html auto cad 6 cracks ] [http://s1.shard.jp/losaul/alloys-australian.html i still call australia home download ] [http://s1.shard.jp/frhorton/ocdp2flvo.html south africa race relations ] [http://s1.shard.jp/frhorton/78vbl98c2.html african hut ] [http://s1.shard.jp/bireba/windows-xp-antivirus.html panda titanium antivirus 2005 keygen ] [http://s1.shard.jp/galeach/new103.html all charity provided in asian tsunami ] [http://s1.shard.jp/galeach/new86.html mr chew asian bever ] [http://s1.shard.jp/frhorton/17h5odjs2.html african chiclids species ] sofos antivirus [http://s1.shard.jp/losaul/coastlines-of-australia.html australias river map ] [http://s1.shard.jp/olharder/tactical-automated.html how auto insurance companies determine your premium ] [http://s1.shard.jp/losaul/upstream-petroleum.html australia coast queensland sunshine tour ] [http://s1.shard.jp/galeach/new26.html asian martial arts center ] [http://s1.shard.jp/bireba/notron-antivirus.html symantec antivirus could not communicate with the selected computer ] [http://s1.shard.jp/bireba/symantec-antivirus.html how to disable avg antivirus ] [http://s1.shard.jp/frhorton/yvqavqw7n.html live cricket streaming south africa ] [http://s1.shard.jp/galeach/new133.html asian cleanser mulberry whitening ] [http://s1.shard.jp/frhorton/l2ids56ra.html african american civil memorial travel war ] [http://s1.shard.jp/frhorton/kvvijfhfe.html african rain forest food chain ] [http://s1.shard.jp/frhorton/b9vqclfhc.html african american film movie ] [http://s1.shard.jp/bireba/symantec-norton.html top antivirus for 2005 ] [http://s1.shard.jp/olharder/automatic-guided.html automatic control valve ] links [http://s1.shard.jp/frhorton/ds9o5dtz4.html cricket south africa and england ] [http://s1.shard.jp/frhorton/4bgszojmg.html south african arts and culture ] [http://s1.shard.jp/bireba/remove-norton-antivirus.html panda antivirus titanium ] [http://s1.shard.jp/bireba/antivirus-2004.html antivirus gratuit online ] [http://s1.shard.jp/losaul/the-barrier-reef.html cooler australia ] [http://s1.shard.jp/frhorton/xn61tpox7.html prehistory africa ] [http://s1.shard.jp/olharder/autokillercom.html automobile saturn ] [http://s1.shard.jp/galeach/new95.html asia carrera movie list ] [http://s1.shard.jp/bireba/crack-panda.html titanium antivirus and truprevent compusa display ] [http://s1.shard.jp/losaul/australian-club.html ranch work australia ] [http://s1.shard.jp/bireba/mcafee-free-antivirus.html windows 2000 server antivirus free ] [http://s1.shard.jp/bireba/symantec-antivirus.html antivirus virus definition update ] [http://s1.shard.jp/galeach/new157.html clediocranial dysplasia ] [http://s1.shard.jp/bireba/antivirus-software.html sbc yahoo antivirus rating ] [http://s1.shard.jp/olharder/auto-copart-sale.html jeep wrangler automatic ] [http://s1.shard.jp/galeach/new36.html history anastasia ] [http://s1.shard.jp/frhorton/qtlusvqfk.html african american gift ] [http://s1.shard.jp/losaul/school-camps.html australian defense force academy ] webmap [http://s1.shard.jp/galeach/new119.html hot asian guy pics ] [http://s1.shard.jp/losaul/australian-oil.html australian grand motorcycle prix ] [http://s1.shard.jp/losaul/desktop-magazine.html cheap international flights fro australia ]

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.

Last revision (mm/dd/yy): 05/29/2009

Vulnerabilities Table of Contents

Description

When an undesirably low amount of entropy is available. Psuedo Random Number Generators are susceptible to suffering from insufficient entropy when they are initialized, because entropy data may not be available to them yet.

Risk Factors

TBD

Examples

TBD

Related Attacks

In many case,s a PRNG uses a combination of the system clock and entropy to create seed data. If insufficient entropy is available, an attacker can reduce the size magnitude of the seed value considerably. Furthermore, by guessing values of the system clock, they can create a manageable set of possible PRNG outputs.

Related Vulnerabilities

Related Controls

Many PRNG's (/dev/random and /dev/urandom for example) store their last value before shutdown. By using this value at intialization, they can sometimes avoid insufficient or predictable starting entropy.

Related Technical Impacts

References

TBD

Retrieved from "https://wiki.owasp.org/index.php?title=Insufficient_Entropy&oldid=62973"