Skip to content
openentropy logo openentropy

Security Validation

Use this workflow when validating entropy quality for key generation or CSPRNG seeding.

1) Run Security Profile

Section titled “1) Run Security Profile”
Terminal window
openentropy analyze --profile security --output audit.md

security enables forensic + entropy breakdown + NIST-style report behavior.

2) Confirm Entropy Quality Signals

Section titled “2) Confirm Entropy Quality Signals”
  • Min-entropy is in an acceptable range for your threat model
  • Forensic metrics show no persistent structural failures
  • NIST-style report pass/fail trends are stable across runs

3) Compare Multiple Runs

Section titled “3) Compare Multiple Runs”

Run at least a few independent captures to avoid one-off conclusions:

Terminal window
openentropy record all --duration 1m --analyze
openentropy sessions sessions/<id> --profile security

4) Enforce Conditioned Output In Production

Section titled “4) Enforce Conditioned Output In Production”

Use SHA-256 conditioned output for operational use:

Terminal window
openentropy stream --conditioning sha256 --format raw --bytes 1024
Section titled “Related”