Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.lang.python > #7171

Re: How good is security via hashing

From Terry Reedy <tjreedy@udel.edu>
Subject Re: How good is security via hashing
Date 2011-06-07 14:26 -0400
References <4DEDFAEB.4050006@chamonix.reportlab.co.uk> <BANLkTinRJpe6zQ5EYVYXxjfc+ue=Gh-4JA@mail.gmail.com> <4DEE0CF9.6020508@chamonix.reportlab.co.uk>
Newsgroups comp.lang.python
Message-ID <mailman.2537.1307471185.9059.python-list@python.org> (permalink)

Show all headers | View raw

On 6/7/2011 7:35 AM, Robin Becker wrote:

> I guess what I'm asking is whether any sequence that's using random to
> generate random numbers is predictable if enough samples are drawn.

Apparently so. random.random is *not* 'cryptographically secure'.
https://secure.wikimedia.org/wikipedia/en/wiki/Cryptographically_secure_pseudorandom_number_generator

One of Python's crypto wrapper modules (sorry, forget which one) was 
recently modified to expose the crypto rng functions in the wrapped C 
library. It should be mentioned in What New for 3.3. You might be able 
to get at the same functions with ctypes.

-- 
Terry Jan Reedy

Back to comp.lang.python | Previous | Next | Find similar | Unroll thread

Thread

Re: How good is security via hashing Terry Reedy <tjreedy@udel.edu> - 2011-06-07 14:26 -0400

csiph-web