|| at Dec 5, 2012 at 7:39 pm
On Wednesday, December 5, 2012 11:26:48 AM UTC-8, Archos wrote:
"Do we really care if it is leaking information if all we really want is
some random numbers fast?"
The only information it leaks is information about the state of the random
number generator. In other words, if you watch its output long enough, you
can predict its future output. If you're using it for something with
security implications, this is very bad. But if you're using it to decide
which of 500 different cat pictures to use in your blog background, it's no
All non-cryptographically-secure random number generators have an
information-leakage problem, to one extent or another. That's why they're
not considered cryptographically secure.