I get that lava lamps looks cool, I own one too but… seriously?
"The Randomness Crisis Threatening the Internet"?
… in 2025???

(please note that I have nothing particular against this video, this was mainly the straw that breaks the camel's back and finally led me to rant on the interwebs 🤣)

This problem has long been solved for good, and Yarrow in 1999 put a nail in the coffin for most practical purposes, and Fortuna again in 2003 even removed the need for entropy estimation.

#CSPRNG are real. Are here. Are working. They are fundamentally indistinguishable from real #random numbers (#RNG) for every possible purpose.

“Anyone who considers arithmetical methods of producing random digits is, of course, in a state of sin.” (John Von Neumann, 1951)

This is still a cool quote, but it's just that. Funny. Nice. Interesting from an historical point of view. (and only technically still true, not in any practical way)

從 Dart 的 PRNG 問題學一些經驗...

從 Lobste.rs 上看到的文章，在講 Dart 的 PRNG 問題：「Far From Random: Three Mistakes From Dart/Flutter's Weak PRNG」。

主要的經驗有兩組，第一個是 PRNG 與 CSPRNG 的差異，後者保證了難以預測的特性 (cryptographically

https://blog.gslin.org/archives/2024/12/18/12131/%e5%be%9e-dart-%e7%9a%84-prng-%e5%95%8f%e9%a1%8c%e5%ad%b8%e4%b8%80%e4%ba%9b%e7%b6%93%e9%a9%97/

#Computer #Murmuring #Programming #Security #Software #cryptography #csprng #dart #entropy #flutter #prng #random #security #seed

(Bad) RNG made in Italy

https://f.lapo.it/display/6a1cc041-1764-6e31-89df-4fc146500607

Just implemented a Go version of Dicemate passphrase generator. Like other implementations it also supports #CSPRNG:

➡️ https://gitlab.com/adnan360/dicemate/-/tree/master/go

#golang #security

I never coded in #Perl before. But I did and I really enjoyed coding in Perl for some reason. 👍 I can't explain why.

The result is an implementation of #Diceware #passphrase #generator in Perl created in around 5 hours in total: 🎉

➡️ https://gitlab.com/adnan360/dicemate/-/tree/master/perl

It supports CLI parameters to customize the passphrase and uses EFF wordlist by default. It uses #CSPRNG for randomization which is a plus. Code is licensed #CC0, wordlist CC-BY.

#security

Computers aren't random. They just repeat stuff, again and again. But...

"...cryptography cannot work without unpredictable randomness! If your random generator is compromised, it will generate predictable numbers and crackers will be able to decrypt your communication, reveal your private keys, tamper your digital signatures, etc."

So people found a clever way by using sensor readings and mouse movements which are never predictable.

➡️ https://cryptobook.nakov.com/secure-random-generators

#security #randomness #CSPRNG