Ticket #14 (new defect)
Opened 3 months ago
secure random number generation
| Reported by: | mpasternacki | Owned by: | |
|---|---|---|---|
| Priority: | major | Milestone: | |
| Component: | code | Version: | 1.1 extended |
| Keywords: | Cc: |
Description
Currently, random values are generated using CL:RANDOM function. This is far from cryptographically secure. Spec refers to RFC 1750 Randomness Recommendations for Security; these recommendations should be implemented, as a separate library, and this library should be used for generating random numbers.
Note: See
TracTickets for help on using
tickets.
