Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

SecureRandom self-seeding

Tags:

java

random

I found a lot of examples about the SecureRandom class that look like this:

Random random = new SecureRandom();
int randomInteger = random.nextInt();

or like this:

try
{
    Random random = SecureRandom.getInstance("SHA1PRNG");
    int randomInteger = random.nextInt();
}
catch (NoSuchAlgorithmException exception)
{
    // ...
}

or something similar.

However, both SecureRandom() and SecureRandom.getInstance(String) have this part in their documentation:

The returned SecureRandom object has not been seeded. To seed the returned object, call the setSeed method. If setSeed is not called, the first call to nextBytes will force the SecureRandom object to seed itself. This self-seeding will not occur if setSeed was previously called.

So, the Random object is never seeded at creation time in the above examples. The documentation of nextInt() (from the Random class documentation, it's not overridden in SecureRandom) states:

The method nextInt is implemented by class Random as if by:

public int nextInt() {
    return next(32);
}

So, there is no call to a nextBytes method, neither the documentation for the next method in SecureRandom says anything about seeding.

My questions are: are the above Random objects seeded for sure? Are all those examples wrong or am I missing something? Can I safely use such an unseeded random numbers generator?

As correctly pointed out in a comment, looking at the source code it seems like next calls nextBytes, therefore initializing the seed, however this is not mentioned in the documentation.

like image 538
effeffe Avatar asked Jun 09 '13 11:06

effeffe

1 Answers

With Sun's JRE, can a SecureRandom be used without seeding? No, for the reason @assylias pointed out in his comment. nextInt calls nextBytes, which ensures the SecureRandom is seeded.

Could an alternate implementation of the Java platform provide a SecureRandom which could be used without seeding, while still conforming to the documented interface? Yes. Would that be bad? Oh yes. Would any implementer be so stupid as to do such a thing? Probably not. Is it something Java programmers need to worry about? No.

like image 106
Alex D Avatar answered Sep 20 '22 16:09

Alex D
Sign in to Comment

Related questions

Should I synchronize on a ReferenceQueue?
runnable interface example
Why does Eclipse export my entire project as runnable JAR file?
guidance on jvm options in idiomatic scala
How to test a timer?
Is there an Intellij plugin to align values in a .properties file?
java.lang.ArrayIndexOutOfBoundsException at com.sun.mail.imap.MessageCache.getMessage(MessageCache.java:123)
How do JMS selectors scale with queue depth?
How to upload binary file using URLConnection
To Pool or not to Pool java crypto service providers
Netty Client to Server message
Sending slash and backslash with Java
Java7 WatchService - How to detect rename/move of the actual watched directory
Table with variable column width per row (similar to UICollectionView for iOS)
Does RandomAccessFile in java read entire file in memory?
how to merge cells dynamically in JXLS API in transformed template
long static Strings in short-lived objects
Differences in JLabel when loading ttf font between Windows and Linux
Test WebSocket in PlayFramework
Java/Tomcat hacked [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!