[erlang-questions] Random/Crypto Issue with Erlang?

Jesper Louis Andersen jesper.louis.andersen@REDACTED
Fri Jun 10 10:28:30 CEST 2016


On Fri, Jun 10, 2016 at 5:06 AM, Technion <technion@REDACTED> wrote:

> *By default this is the RAND_bytes method from OpenSSL.*


Indeed.

Luckily crypto:random_bytes/1 is deprecated as of release 19.0 IIRC. And I
do believe crypto:strong_random_bytes/1 still uses the SSL RAND_bytes
generator. The `enacl` library I wrote for NaCl/libsodium based crypto uses
libsodiums randombytes primitive which is indeed tied to the kernel CSPRNG,
which avoids these problems on most modern operating systems.


-- 
J.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20160610/0caf0b97/attachment.htm>


More information about the erlang-questions mailing list