Jump to content

Talk:Lavarand

Page contents not supported in other languages.
From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by David in oregon (talk | contribs) at 18:10, 1 October 2017 (True Random Number Generator? What's that?: new section). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

WikiProject iconComputing: Software Stub‑class
WikiProject iconThis article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
StubThis article has been rated as Stub-class on Wikipedia's content assessment scale.
???This article has not yet received a rating on the project's importance scale.
Taskforce icon
This article is supported by WikiProject Software.
Note icon
This article has been automatically rated by a bot or other tool as Stub-class because it uses a stub template. Please ensure the assessment is correct before removing the |auto= parameter.

This article is about lavarand, whereas the link is to the LavaRnd site. See this page for the reasons why this is inaccurate. I am removing the link. Alex Dodge 19:36, 19 September 2006 (UTC)[reply]

The article suggests that the lavarand system is "truly" random. Adding a source of entropy does not truly randomize something as there is still some level of prediction. I think this statement should be removed from the article.

Agreed. I have removed the word 'truly', because it is debatable at best. Nath 19:33, 2 May 2007 (UTC)[reply]

Source?

Is the source available anywhere, and did it use IndyCams? — Preceding unsigned comment added by 69.65.91.78 (talk) 01:36, 25 January 2015 (UTC)[reply]

Hello fellow Wikipedians,

I have just modified one external link on Lavarand. Please take a moment to review my edit. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit this simple FaQ for additional information. I made the following changes:

When you have finished reviewing my changes, please set the checked parameter below to true or failed to let others know (documentation at {{Sourcecheck}}).

This message was posted before February 2018. After February 2018, "External links modified" talk page sections are no longer generated or monitored by InternetArchiveBot. No special action is required regarding these talk page notices, other than regular verification using the archive tool instructions below. Editors have permission to delete these "External links modified" talk page sections if they want to de-clutter talk pages, but see the RfC before doing mass systematic removals. This message is updated dynamically through the template {{source check}} (last update: 5 June 2024).

  • If you have discovered URLs which were erroneously considered dead by the bot, you can report them with this tool.
  • If you found an error with any archives or the URLs themselves, you can fix them with this tool.

Cheers.—cyberbot IITalk to my owner:Online 18:46, 2 July 2016 (UTC)[reply]

True Random Number Generator? What's that?

The text currently says this:

"the full process essentially qualifies as a "true" random number generator due to the random seed that is used".

This implies there there is some well defined standard for RNGs called TRNG that can be achieved and qualified. This is untrue. There is no such clear definition of "True Random Number Generator".

The reasonable description of lavarand, along with many other RNGs is "A periodically reseeded Cryptographically Secure Pseudo Random Number Generator". This is what ANSI X9.82, NIST SP800-90C and general practice guides RNG designers to do. There are terms for close-to-full-entropy RNGs defined by SP800-90C, such as ENRBG and NRBG however I suspect that the nature of those things in the NIST specs while matching what people think of when they say "TRNG", the details do no match at all, because a DRBG (PRNG) is still included and mixed in, either with the XOR construction or the oversampling construction defined in 90C.

Maybe we need to define the CSPRPRNG (Cryptographically Secure Periodically Reseeded, Pseudo Random Number Generator)? Although NIST, being NIST would change the name to CRPRDRBG just to be annoying. I'll put that in my book, so when it's published, wikipedia can reference it and it'll be real.

The details of linked Lavarand web page reveal that it hasn't been designed to any of the standards or in reference to extractor theory. The extractor algorithm is SHA-1. This doesn't meet any standard and extractor theory tells us a single input extractor needs and independent seed in order to work. The PRNG used is Blum-Blum-Shub, which is certainly problematic for cryptographic use. The wikipedia entry on BBS is weak and doesn't go into the implementation issues, which are grave.

So while "TRNG" might be the term to describe what people think LavaRand is, TRNG is not a well defined term and if it was well defined in the manner above, Lavarand would not be 'qualify' as a TRNG.

I suggest changing "using the result to seed a pseudorandom number generator.[1]" to "using the result to periodically reseed a pseudorandom number generator.[1]" and delete the sentence that follows.