* [RFC] FW: proposal for systems that do not require security
@ 2001-04-10 12:35 Heusden, Folkert van
2001-04-10 13:11 ` Andrey Panin
` (2 more replies)
0 siblings, 3 replies; 5+ messages in thread
From: Heusden, Folkert van @ 2001-04-10 12:35 UTC (permalink / raw)
To: Linux Kernel Development
Hi,
I have an idea: I have a couple of linux-systems running in a intranet which
is not connected to do outside world in any way. Since they're only used for
calculations for which there is no harm if anyone would tamper with them,
security is not neccessary. The only thing important, is performance. Huge
amounts of data must be transferred inbetween these boxes.
So, I was wondering: isn't it a nice idea to have a switch in the
configuration menu to disable entropy-gathering in the interrupt-routines,
have some simplistic routine (like x'=(x * m + a) % p) which returns a non-
cryptographic value, and something similar symplistic for the network-
traffic routines?
Thank you.
Folkert van Heusden
[ www.vanheusden.com ]
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [RFC] FW: proposal for systems that do not require security
2001-04-10 12:35 [RFC] FW: proposal for systems that do not require security Heusden, Folkert van
@ 2001-04-10 13:11 ` Andrey Panin
2001-04-10 14:28 ` sama
2001-04-20 9:02 ` Jeremy Fitzhardinge
2 siblings, 0 replies; 5+ messages in thread
From: Andrey Panin @ 2001-04-10 13:11 UTC (permalink / raw)
To: Heusden, Folkert van; +Cc: linux-kernel
[-- Attachment #1: Type: text/plain, Size: 185 bytes --]
Do you think it worth an effort ?
--
Andrey Panin | Embedded systems software engineer
pazke@orbita1.ru | PGP key: http://www.orbita1.ru/~pazke/AndreyPanin.asc
[-- Attachment #2: Type: application/pgp-signature, Size: 232 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* RE: [RFC] FW: proposal for systems that do not require security
@ 2001-04-10 13:16 Heusden, Folkert van
0 siblings, 0 replies; 5+ messages in thread
From: Heusden, Folkert van @ 2001-04-10 13:16 UTC (permalink / raw)
To: Andrey Panin; +Cc: linux-kernel
AP> Do you think it worth an effort ?
One could ask this question for all optimalisations.
In fact; for every project.
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [RFC] FW: proposal for systems that do not require security
2001-04-10 12:35 [RFC] FW: proposal for systems that do not require security Heusden, Folkert van
2001-04-10 13:11 ` Andrey Panin
@ 2001-04-10 14:28 ` sama
2001-04-20 9:02 ` Jeremy Fitzhardinge
2 siblings, 0 replies; 5+ messages in thread
From: sama @ 2001-04-10 14:28 UTC (permalink / raw)
To: Linux Kernel Development
On Tue, Apr 10, 2001 at 02:35:52PM +0200, Heusden, Folkert van wrote:
> Hi,
>
> I have an idea: I have a couple of linux-systems running in a intranet which
> is not connected to do outside world in any way. Since they're only used for
> calculations for which there is no harm if anyone would tamper with them,
> security is not neccessary. The only thing important, is performance. Huge
> amounts of data must be transferred inbetween these boxes.
> So, I was wondering: isn't it a nice idea to have a switch in the
> configuration menu to disable entropy-gathering in the interrupt-routines,
> have some simplistic routine (like x'=(x * m + a) % p) which returns a non-
> cryptographic value, and something similar symplistic for the network-
> traffic routines?
Have you already tried to measure how much impact has entropy
gathering on the overall performances? Something like the Linux Trace
Toolkit (http://www.opersys.com/LTT/) could be of help here.
I doubt such optimization is useful to the mainstream kernel tree,
but it would be interesting to compare numbers nonetheless.
Ciao,
Andrea Glorioso
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [RFC] FW: proposal for systems that do not require security
2001-04-10 12:35 [RFC] FW: proposal for systems that do not require security Heusden, Folkert van
2001-04-10 13:11 ` Andrey Panin
2001-04-10 14:28 ` sama
@ 2001-04-20 9:02 ` Jeremy Fitzhardinge
2 siblings, 0 replies; 5+ messages in thread
From: Jeremy Fitzhardinge @ 2001-04-20 9:02 UTC (permalink / raw)
To: Heusden, Folkert van; +Cc: Linux Kernel Development
On Tue, Apr 10, 2001 at 02:35:52PM +0200, Heusden, Folkert van wrote:
> So, I was wondering: isn't it a nice idea to have a switch in the
> configuration menu to disable entropy-gathering in the interrupt-routines,
> have some simplistic routine (like x'=(x * m + a) % p) which returns a non-
> cryptographic value, and something similar symplistic for the network-
> traffic routines?
No, that's a very bad idea. If you think it's a problem, just remove
the random driver altogether. It's much better for something to get
ENXIO rather than thinking it's getting real randomness.
You can still get TCP sequence numbers by sampling the cycle counter or
something.
J
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2001-04-20 9:02 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2001-04-10 12:35 [RFC] FW: proposal for systems that do not require security Heusden, Folkert van
2001-04-10 13:11 ` Andrey Panin
2001-04-10 14:28 ` sama
2001-04-20 9:02 ` Jeremy Fitzhardinge
-- strict thread matches above, loose matches on Subject: below --
2001-04-10 13:16 Heusden, Folkert van
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox