Sākums Izpētīt Palīdzība
Pierakstīties
BlitzNG
/
random.mod
spogulis no https://github.com/bmx-ng/random.mod.git
2
0
Atdalīts 0
Faili Problēmas 0 Vikivietne
Koks: d575245581
Atzari Tagi
random.mod
/
secure.mod
/
doc
/
intro.bbdoc

intro.bbdoc 2.2 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233 
  1. The Random.Secure module provides a robust and secure way to generate random numbers across each platform.
    2. 

  2. This module is designed to leverage the underlying cryptographic services of each operating system,
    3. 

  3. ensuring that the random numbers produced are high-quality.
    4. 

  4. 

  5. Because of this, this particular module does not provide a way to seed the random number generator.
    6. 

  6. 

  7. ## Windows
    8. 

  8. On Windows, Random.Secure uses the Cryptographic Application Programming Interface (CryptoAPI).
    9. 

  9. 

  10. Specifically, it employs the `CryptGenRandom` function, which is part of the Windows Cryptography API: Next Generation (CNG).
    11. 

  11. This function accesses the system's cryptographic service provider to produce a stream of random bytes.
    12. 

  12. These bytes are considered cryptographically secure, as they are generated using a random number generator (RNG) that has been seeded
    13. 

  13. with the current system time, process ID, thread ID, and various other high-entropy sources. The use of `CryptGenRandom` ensures that the
    14. 

  14. randomness is of high quality and the API takes care of all the complex entropy management and seed generation.
    15. 

  15. 

  16. ## macOS
    17. 

  17. For macOS, the Random.Secure module taps into the native Security framework, utilizing the `SecRandomCopyBytes` function.
    18. 

  18. 

  19. This function is a part of Apple's security best practices and provides an interface to a cryptographically secure random number generator.
    20. 

  20. 

  21. Unlike reading from /dev/random or /dev/urandom, which can be less efficient and direct, `SecRandomCopyBytes` ensures that the random data is
    22. 

  22. retrieved efficiently and is of high quality. It automatically handles entropy pooling and reseeding, pulling from the same entropy sources
    23. 

  23. that the OS itself uses for cryptographic operations.
    24. 

  24. 

  25. ## Linux
    26. 

  26. On Linux systems, Random.Secure reads directly from the `/dev/urandom` device file.
    27. 

  27. 

  28. Unlike `/dev/random`, `/dev/urandom` does not block if there is perceived to be a lack of entropy; instead, it reuses the internal pool
    29. 

  29. to produce more pseudo-random bits. This makes `/dev/urandom` suitable for high-throughput random number generation without the risk of
    30. 

  30. stalling the application.
    31. 

  31. 

  32. The module manages the file descriptor for `/dev/urandom` efficiently, opening it once and reading from it as needed,
    33. 

  33. which avoids the overhead of repeatedly opening and closing the file.
    34.