flat assembler
Message board for the users of flat assembler.
Index
> Windows > How to generate random numbers? Goto page Previous 1, 2, 3 |
Author |
|
revolution 01 Jun 2022, 13:11
rdtsc is not random, it can be predicted.
rdrand might be fully random, or only be somewhat random, or maybe not random at all, Intel won't show us. Keystrokes timing, clock drift/skew/jitter, other known good sources of real random data can't be predicted. So use those if you need actual random data. Cryptographers demand all code and hardware to be open sourced, so it can be examined and analysed. It is part of the process to be considered good for use. It isn't security by obfuscation, it is the opposite, it is security by clearly demonstrated "nothing to hide", just good pure randomness emanating from the system. rdrand is security by declaration. Intel says "trust us". Lol, nope, sorry it doesn't work that way. Last edited by revolution on 01 Jun 2022, 14:23; edited 1 time in total |
|||
01 Jun 2022, 13:11 |
|
revolution 01 Jun 2022, 13:16
Furs wrote: Next you're gonna say "well if you use rdrand just for source it should be fine", but then you also said that "mixing bits" is pointless if the source is bad, so...? Isn't that what you're doing with a prng and rdtsc seed...? Something trivial like choosing a "random" tip of the day, or similar, it's fine, do whatever. Totally different if you want to create secure keys for your Bitlocker disks. Don't use insecure sources, or unverified sources, for those. |
|||
01 Jun 2022, 13:16 |
|
Goto page Previous 1, 2, 3 < Last Thread | Next Thread > |
Forum Rules:
|
Copyright © 1999-2025, Tomasz Grysztar. Also on GitHub, YouTube.
Website powered by rwasa.