Re: Secure random ID generation

From: Valdis.Kletnieks@vt.edu
Date: 12/04/02

  • Next message: Skip Carter: "Re: Secure random ID generation" 
    To: Jose Nazario <jose@monkey.org>
From: Valdis.Kletnieks@vt.edu
Date: Wed, 04 Dec 2002 01:19:01 -0500

    On Tue, 03 Dec 2002 19:26:23 EST, Jose Nazario said:
    > On Tue, 3 Dec 2002 Valdis.Kletnieks@vt.edu wrote:
    >
    > > Not all systems have a /dev/random.
    >
    > secure, portale (ie userland) entropy gathering daemons exist. however,
    > most languages have some form of a PRNG. its a lot easier than trying to
    > write your own.

    Not only do some systems not have a /dev/random, but most languages have
    a truly abysmal built-in PRNG. Using it may be a lot easier, but if you're
    using a poor PRNG, you'll pay for it later....

    Relevant Pages

    • Re: Secure random ID generation
      ... portale (ie userland) entropy gathering daemons exist. ... most languages have some form of a PRNG. ...
      (SecProg)
    • Re: Kresss Probability Trilogy Qs
      ... because they use the same algorithm to generate ... Essentially all modern languages come with PRNGs that are seedable. ... If you want a portable PRNG that you can use cross-platform, or even cross-language, there are many published algorithms, some quite good, even, such as the Mersenne Twister. ...
      (rec.arts.sf.science)
    • Re: Kresss Probability Trilogy Qs
      ... there isn't an ANSI standard PRNG that works the same in all ... Essentially all modern languages come with PRNGs that are seedable. ... you want a portable PRNG that you can use cross-platform, ... cross-language, there are many published algorithms, some quite good, ...
      (rec.arts.sf.science)
    • Re: Secure random ID generation
      ... > most languages have some form of a PRNG. ... NO language specifies the algorithm to be used for the PRNG ... in its libraries. ...
      (SecProg)