Entropy sharing in a large distributed system based on entropy verification by an entropy broker
First Claim
Patent Images
1. A method for sharing entropy, the method comprising:
- receiving, at an entropy broker, a communication from a client;
responsive to determining that the client provided entropy, processing the provided entropy, wherein processing the provided entropy comprisestesting the provided entropy for randomness,the entropy broker determining whether the provided entropy passes verification, andif the entropy passes verification, adding the provided entropy to an entropy pool; and
responsive to determining that the client requested entropy, adding the client to an entropy queue.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatus for sharing entropy between an entropy broker and various devices wherein the entropy broker receives a communication from a client. Responsive to determining that the client provided entropy, the entropy broker tests the provided entropy for randomness and stores provided entropy that passes verification and responsive to determining that the client requested entropy, the entropy broker adds the client to an entropy queue.
-
Citations
18 Claims
-
1. A method for sharing entropy, the method comprising:
-
receiving, at an entropy broker, a communication from a client; responsive to determining that the client provided entropy, processing the provided entropy, wherein processing the provided entropy comprises testing the provided entropy for randomness, the entropy broker determining whether the provided entropy passes verification, and if the entropy passes verification, adding the provided entropy to an entropy pool; and responsive to determining that the client requested entropy, adding the client to an entropy queue. - View Dependent Claims (2, 3, 4)
-
-
5. A method for sharing entropy, the method being operable at an entropy broker and comprising:
-
receiving a communication from a client; responsive to determining that the client provided entropy, processing the provided entropy; responsive to determining that the client requested entropy, adding the client to an entropy queue; and for a client in the entropy queue, determining whether the amount of entropy available at the entropy broker is greater than a first threshold, and if an amount of entropy available at the entropy broker is greater than a first threshold, allocating a first amount of unique entropy to the client. - View Dependent Claims (6, 7, 8, 9, 10, 11)
-
-
12. A method for sharing entropy, the method being operable at a client device and comprising:
-
securely collecting entropy at the client device from physical devices on the client device; determining whether the client device has collected enough entropy for the client device'"'"'s own use; responsive to determining that the client device has not collected enough entropy for the client device'"'"'s own use, requesting entropy from an entropy broker; determining whether the client device has excess entropy; responsive to determining that the client device has excess entropy, securely storing the excess entropy on the client device; and responsive to determining that a configurable amount of entropy has accumulated in local storage, securely sending the excess entropy to an entropy broker. - View Dependent Claims (13, 14, 15, 16)
-
-
17. An entropy broker, comprising:
-
a processor operably coupled to a memory; an entropy receiving module that receives entropy from a first client, tests the provided entropy for randomness, determines whether the provided entropy passes verification, and if the entropy passes verification, adds the provided entropy to an entropy pool; and an entropy request fulfillment module that receives a request for entropy from a second client that is different from the first client and provides a given amount of received entropy to the second client.
-
-
18. A client device comprising:
-
a processor operably coupled to a memory; a communications system operably coupled to the processor; and an entropy manager that securely collects entropy from physical devices on the client device, provides entropy to applications operating on the device, responsive to determining that a configurable amount of excess entropy has accumulated in local storage, securely sends the excess entropy to an entropy broker and responsive to determining that the client device has not collected enough entropy for the client device'"'"'s own use, requests entropy from the entropy broker.
-
Specification