| Re: How to generate cryptographically-secure random big-integers? [message #170987 is a reply to message #170224] |
Mon, 13 December 2010 20:28   |
seeWebInstead
Messages: 14
Registered: October 2010
Karma:
|
Junior Member |
|
|
> From: Erwin Moller <Since_humans_read_this_I_am_spammed_too_m...@spamyourself.com>
> Personally, I have never been in need of a *real* RNG, the
> pseudorandom numbers have always been good enough for my purposes.
If you are sampling data for statistical tests, either for
scientific research, or engineering quality control, and you want
others to be able to duplicate your studies and thus verify your
results or detect mistakes you made in your algorithms, then a PRNG
is exactly what you need.
But for cryptographic purposes, for seeding your randomly-generated
crypto-parameters, where you want it to be practically IMPOSSIBLE
for anyone else to duplicate your results and thus crack your
cryptosystem, a PRNG is most definitely *not* what you want, unless
you use a truly random seed feeding into the PRNG, in which case
all you needed was the seed to begin with, any PRNG that follows is
entirely moot (obfuscation) that adds nothing to your security.
I presume that in your past work you've never needed to generate a
cryptographically secure random number that outsiders couldn't
guess, because you *wanted* others to be able to duplicate your
research per my first paragraph above.
|
|
|
|
Calendar
Search
Help
Members
Register
Login
Home
]