Yesterday I had a blast presenting my talk Security not by chance: the AltusMetrum hardware true random number generator at DebConf14.
In my talk I mention the rationale for gathering more entropy: The Linux urandom boot-time entropy hole as described in the paper Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices.
I also mention some of the difficulty in assessing RNG quality for security applications as highlighted by Matthew Green in his blog post How do you know if an RNG is working?.
If you'd like to learn more you can...
- Download the presentation (see below)
- Check out the web page for USB TRNG
- Join us on IRC OFTC #altusmetrum
- Join the trng mailing list
Let me know if you'd like to get involved!