[erlang-questions] Random/Crypto Issue with Erlang?
Jesper Louis Andersen
jesper.louis.andersen@REDACTED
Fri Jun 10 10:28:30 CEST 2016
On Fri, Jun 10, 2016 at 5:06 AM, Technion <technion@REDACTED> wrote:
> *By default this is the RAND_bytes method from OpenSSL.*
Indeed.
Luckily crypto:random_bytes/1 is deprecated as of release 19.0 IIRC. And I
do believe crypto:strong_random_bytes/1 still uses the SSL RAND_bytes
generator. The `enacl` library I wrote for NaCl/libsodium based crypto uses
libsodiums randombytes primitive which is indeed tied to the kernel CSPRNG,
which avoids these problems on most modern operating systems.
--
J.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20160610/0caf0b97/attachment.htm>
More information about the erlang-questions
mailing list