tags:

views:

237

answers:

2
+4  Q: 

programatically using Hardware Random number generator

I'm working on a desktop application and would love to use any hardware random number generators that happen to be available, though I dont want the user to have to do any confusing setup to use it. its Java/Clojure based so something in the java world would be nice though I'm willing to work with just about anything. Know of any programs that do this well? are they cross platform?

+2  A: 

It depends on the quality of random numbers you need to generate. Specifically, how much entropy do you need?

If you really need some hardcore random numbers that aren't dependent on a predictable clock, you might want to check out the 3rd party generators available.

http://en.wikipedia.org/wiki/Hardware_random_number_generator

Some of these use thermal heat, etc... to increase the entropy of each bit.

Robert Greiner  2009-08-05 20:38:30
The OP's asking how to interface with whatever's available, surely? How does the amount of entropy needed factor in here?
bdonlan  2009-08-05 20:40:00
there are only so many options available in a vanilla machine. I was just letting him know that all random numbers are not created equal, and trying to inform him of some alternatives. My answer may not be exactly what he is looking for, but I think it is pertinent to his problem.
Robert Greiner  2009-08-05 20:42:01
the short answer is "enough to keep my users data safe from all attacks up to but not including torture"
Arthur Ulfeldt  2009-08-05 21:49:13
haha, ok. Then my approach is way too hardcore for what you need. bdonlan has an excellent answer.
Robert Greiner  2009-08-05 22:21:41
+6  A: 

You should use the Java SecureRandom class. The user can override the default algorithm selection with a hardware RNG by setting its preference order. This then applies to all Java applications, including yours.

bdonlan  2009-08-05 20:39:18
The corollary is that the app would need a SecureRandom engine class for each device that might "happen to be available". Unless someone out there already maintains a library of such classes for common devices, this is a tall order!
Stephen C  2009-08-05 22:54:06
Or there can be one SecureRandom engine that uses the OS facilities for interacting with hardware RNGs
bdonlan  2009-08-06 01:46:22
@bdolan: I don't think that will work. AFAIK, there are no specific standards for interfacing RNG hardware, and no standard OS-level services.
Stephen C  2009-08-06 09:31:03
Not 'standard' but per-OS. Linux's /dev/random, Window's CryptGenRandom(), etc.
bdonlan  2009-08-06 13:29:54

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java