More docs on rng issues

2024-11-11 11:35:07 -05:00 · 2013-09-15 22:31:52 +02:00 · 2013-09-15 22:31:52 +02:00 · 900fdcf029
commit 900fdcf029
parent e05d17eec2
1 changed files with 5 additions and 0 deletions
--- a/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/util/PRNGFixes.java
+++ b/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/util/PRNGFixes.java
@ -35,6 +35,11 @@ import java.security.Security;
 * copied from http://android-developers.blogspot.de/2013/08/some-securerandom-thoughts.html
 * 
 * 
+ * More information on these Android bugs:
+ * http://blog.k3170makan.com/2013/08/more-details-on-android-jca-prng-flaw.html
+ * Paper: "Randomly failed! Weaknesses in Java Pseudo Random Number Generators (PRNGs)"
+ * 
+ * 
 * Sep 15, 2013:
 * On some devices /dev/urandom is non-writable!
 * No need to seed /dev/urandom. urandom should have enough seeds from the OS and kernel.