Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror

Comment Re:Random today, but still random tomorrow? (Score 1) 395 395

Some RNGs are seeded with "folder data" in this way. Mozilla's NSS, for example, looks at temp directories and mixes that data in as a seed. Using this as the *output* of a PRNG? Nope, not a good idea -- we've got a handful of CSPRNGs that have strong security proofs associated with them. For example, Blum Blum Shub is secure so long as integer factorization is hard. This is the same assumption we make for RSA, for example. Your RNG lacks any such guarantee. Plus, your idea falls down when you say "choose 5 folders at random". How do you do that?

Fools ignore complexity. Pragmatists suffer it. Some can avoid it. Geniuses remove it. -- Perlis's Programming Proverb #58, SIGPLAN Notices, Sept. 1982

Working...