http://security.stackexchange.com/questions/47871/how-securely-random-is-oracles-java-security-securerandom 160 bits = not even enough entropy to shuffle a deck of cards properly!
http://www.cigital.com/justice-league-blog/2009/08/14/proper-use-of-javas-securerandom/ Hard to use, somewhat convoluted http://moi.vonos.net/java/securerandom/ Interesting bits on Linux's native PRNG and such: http://stackoverflow.com/questions/11051205/difference-between-java-util-random-and-java-security-securerandom Why you shouldn't use java.util.Random and links to how to break LCRNGs http://www.mattnworb.com/post/14312102134/the-dangers-of-java-security-securerandom It defaults to seeding from /dev/random? Ooops http://link.springer.com/chapter/10.1007%2F0-387-34805-0_14#page-1 How to predict congruential generators http://www.ams.org/journals/mcom/2005-74-251/S0025-5718-04-01698-9/ Predicting nonlinear pseudorandom number generators http://www.simovits.com/sites/default/files/simovits_artikel_internetcasino_0.PDF Usage of LCG/CLCG numbers for electronic gambling applications -- http://www.subspacefield.org/~travis/ I'm feeling a little uncertain about this random generator of numbers.
pgpuehBmHxA9l.pgp
Description: PGP signature
_______________________________________________ RNG mailing list [email protected] http://lists.bitrot.info/mailman/listinfo/rng
