alt Hacker NewsTo paraphrase how I see things going so far, plus one:
1. tptacek: "It's hard to imagine how Cloudflare's lava-lamps could ever make the cryptography worse."
2. Terr_: "Well, technically it could make it worse, if 'hey look we're using a cool lava-lamp wall' comes at the expense of opportunities to insert higher-quality entropy from some other source."
3. tptacek: "It doesn't matter because they can just add it to everything else."
4. Terr_: "I didn't say adding, I said substituting."
5. tptacek: "A CSPRNG algorithm always lets you add more passes and bits. You don't have to make that choice."
6. Terr_: "But Cloudflare does have to make that choice because sensors and computers and CPU-cycles and budgets are all limited! Those constraints are the entire reason we're even using a CSPRNG in the first place."
I'm sorry, I've lost track of what you're trying to argue. The point is that in practice, any sane design is just going to hash "lava lamp" information in with all the other low-quality entropy inputs that drive the LRNG. I wasn't making a subtle or complicated point here.