Re: Sufficiently safe random information for security-critical Guile app

guile-user

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Sufficiently safe random information for security-critical Guile app

From:	Andy Wingo
Subject:	Re: Sufficiently safe random information for security-critical Guile applications
Date:	Wed, 31 Aug 2016 18:09:40 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)

Hi :)

Josh (and the manual) is right -- don't use Guile's RNG for
security-sensitive purposes.  Mostly it's just for games, monte-carlo
simulations and the like.  I wish it were a CSPRNG but it's not; oh
well.

The quality of the PRNG is a separate issue.  MWC could be improved, but
JS impls at least moved to xorshift128+ or something like that.  Anyway
a separate topic entirely.

For sufficiently random sequences of bytes for cryptographic purposes, I
recommend get-bytevector-n on /dev/urandom.

Andy

[Prev in Thread]

Current Thread

[Next in Thread]

Sufficiently safe random information for security-critical Guile applications, Christopher Allan Webber, 2016/08/26
- Re: Sufficiently safe random information for security-critical Guile applications, Josh Datko, 2016/08/26
  - Re: Sufficiently safe random information for security-critical Guile applications, Christopher Allan Webber, 2016/08/27
    - Re: Sufficiently safe random information for security-critical Guile applications, Andy Wingo <=

Prev by Date: Re: FOSDEM 2016 was awesome! Let's do FOSDEM 2017
Previous by thread: Re: Sufficiently safe random information for security-critical Guile applications
Next by thread: tekuti blog engine git repositories back online
Index(es):
- Date
- Thread