Re: CPRNG

From: Ilmari Karonen <usenet2@xxxxxxxxxxxxxx>
Date: 7 Jun 2009 20:32:34 GMT

On 2009-06-07, Phoenix <ribeiroalvo@xxxxxxxxx> wrote:

Is this algorithm, cryptographically secure pseudo-random number
generator?

http://www.number.com.pt/index.html

No, I don't think so. For one thing, it seems it should be possible
to recover the cipher state (and thereby predict future outputs) with
high probability by observing just three consecutive outputs.

(Call the outputs x, y and z. By definition, we have y = frac(ax) for
some a, and z = frac(by) = frac((a+x)y) = frac(frac(ay) + xy). Let w
= frac(ay) = frac(z - xy + 1). Then we have a = (y + r)/x = (w + s)/y
for some integers r and s, which we should be able to solve for using
a form of Euclid's algorithm. There may be some issues with roundoff,
but I do believe the basic idea should work.)

--
Ilmari Karonen
To reply by e-mail, please replace ".invalid" with ".net" in address.
.

Follow-Ups:
- Re: CPRNG
  - From: Maaartin

References:
- CPRNG
  - From: Phoenix

Prev by Date: Weakest Encryption is Here!
Next by Date: Re: Weakest Encryption is Here!
Previous by thread: CPRNG
Next by thread: Re: CPRNG
Index(es):
- Date
- Thread

Relevant Pages

Re: heat exchangers
... the idea being to recover the generator's ... waste heat while running things in the house. ... It may have been on a RV generator, ...
(rec.crafts.metalworking)
Re: Pictures of welding on the jerry can -- converted to fuel tank
... prevent them from making enough money to recover the cost of ... the generator. ...
(sci.engr.joining.welding)