On Tue, Sep 10, 2013 at 12:13:32AM -0700, Bill Stewart wrote:
The other set of security people who want a large quantity of really good random numbers are people who use one-time pads. Most of them are either hobbyists (who can wait), or actually military/spies/anti-government activists (who are going to ship keys around by courier, which is slow, so they should be willing to generate them in advance), or paranoids (who don't trust public-key crypto, or who don't trust their hardware not to have backdoors, so they've got lots of challenges.) Using OTPs in a professional environment is operationally expensive; you should be willing to spend money on hardware if you're doing it.
Many cheap embeddes have hardware RNGs -- e.g. ALIX (Geode), which can take e.g. HiFn 7955 on a mini-PCI, plus mixing in some entropy from e.g. an USB device is not that expensive.