Collaborate Disseminate
If I generate a large true random number and I seed a CSPRNG with it, then can the output of this CSPRNG be used anywhere where there is a need for a true random number?
For example, if Alice and Bob both know the seed, then could the outp… Continue reading Randomness of seeded cryptographically secure random number generator
If I generate a large true random number and I seed a CSPRNG with it, then can the output of this CSPRNG be used anywhere where there is a need for a true random number?
For example, if Alice and Bob both know the seed, then could the outp… Continue reading Randomness of seeded cryptographically secure random number generator
Today this came to my attention.
When generating random secrets for e.g. JWT (in node.js the most common way is using the crypto.randomBytes() method), I have noticed a lot of people save these tokens in a base64-encoded manner (i.e. crypt… Continue reading Randomly generated secrets: encoding the random bytes in base64 vs keeping them
was trying to brute force a random number generated by the ruby method rand which generated a random float number between 0.0 and 1.0 excluding 1.0.
so for example I have this code:
Time.now.to_s.split(//).sort_by {rand}.join
this produce… Continue reading brute forcing a pseudoRandom number Generator
I am using the following line of code to create a reset password code sent to the user in her/his email. when scanned with brakeman to my ruby code, this line of code is catched and describes it as it is vulnerable.
this is the line of cod… Continue reading exploiting the scenario and how to generate a secure reset password token
Random messages were sent to the following numbers
07065888830
07900031921
07208088410
UPIACT #Q5ò&V#&XOS&*3o&&514&&2#Z##
JP7 Q6NH1GAn96bCK6vXX8JCkg63RLTEvU9mze8Chn*
received message from axis and icici … Continue reading Random messages sent from Airtel number to unknown numbers without my permission [closed]
I’ve been obsessed with figuring out Math.random in JavaScript and how it works. because how could you imagine a computer picking a random number? Where does the number come from?
But now I realized crypto.getRandomValues does not use rand… Continue reading How does `crypto.getRandomValues` work in JavaScript, and how is it different from `Math.random`?
Let’s say I have generated 16 integers (between 0 and 128) using Python
from random import seed, randint
seed(1234)
randoms = [randint(0, 128) for _ in range(0, 16)]
If we have a rough knowledge of the seed (its number of digits for examp… Continue reading Is it possible to retrieve seed from a few random numbers?
We are developing a lottery platform, and we are discussing what the best way to implement it would be.
As we have it right now, the system pre-generates, using a TRNG device, all the winning numbers for the day (about 400) and store it en… Continue reading Pre-generate random numbers or generate it on the spot
Can we create a true random generator whose entropy source is the loss of electrical signals that a binary architecture cannot detect?
If we have a system that let’s say could do this, could we be able to encrypt data in a way that makes p… Continue reading Is there any encryption method that uses TRNGs?