tags:

views:

297

answers:

6
+3  Q: 

How to generate truly random numbers (NOT pseudo) in Linux

Hello,

What is the (best) way to create a secure random numbers in Linux (C/ C++ code), more random than the general rand() results, and not pseudo as OpenSSL BN_rand?

In Windows I found CryptGenRandom() as a good option. Is there any equivalent in Linux?

Thank you in advance.

+14  A: 

you can read from /dev/random which is populated with an entropy pool. There is some good info on the wikipedia site on it: http://en.wikipedia.org/wiki//dev/random

Martijn  2010-10-31 08:42:39
Conclusion: Wikipedia has an article with `//` and `/` as part of its url. Just saying.
Kobi  2010-10-31 10:27:04
Can't open thre damn URL on my iPhone. 404
Time Machine  2010-10-31 11:48:28
you could try http://en.m.wikipedia.org/wiki?search=/dev/random
Martijn  2010-10-31 12:34:28
+4  A: 

"Random" numbers generated by a computer without any external data are pseudo-random. It means that they are generated with a mathematical formula. These algorithms are reliable and should be okay for almost all purposes.

To have a "true" random number, you need an intervention from outside. There are some solutions implemented in various programs (I remember of several ones that used mouse movements or atmospheric noise).

As Martijin just pointed, there is also /dev/random on Linux and OSX. It uses the noise collected by the device drivers.

There is also a web service that I just found : http://www.random.org/clients/http/

Marc Demierre  2010-10-31 08:46:46
You can collect random data on a computer, or use random data from elsewhere (there are several websites which make it available for download; just an example, not saying that is good for security ;). While the rest of your answer is good, your "by definition" isn't.
Roger Pate  2010-10-31 08:57:46
Yes you're right, the random elements coming from outside are a base for the computer and it generates numbers with it. I'll edit.
Marc Demierre  2010-10-31 09:16:16
Sometimes the "computer" already has some "external" sources of entropy. For instance, it may contains several clocks (CPU clock + Sound card/GPU clock), which don't exactly coincide.
valdo  2010-10-31 10:51:52
A: 

Take a look at boost::random_device.

usta  2010-10-31 09:35:49
A: 

read /dev/urandom

tumbak  2010-10-31 10:42:51
+2  A: 

1st CryptGenRandom is not "truly" random device by they are enough random to be cryptographically safe.

Similar under Linux (and most unixes) is reading from /dev/urandom.

If you want to get real random numbers you may read /dev/random but you may get blocked waiting for system to collect them if entropy pool is too small.

Artyom  2010-10-31 10:48:52
A: 

/dev/urandom generates some random numbers based on the actions you perform(moving of the mouse,typing,etc!)

Stefan George  2010-10-31 21:20:44

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS