Fri Oct 25 02:00:00 GMT 2002
Adam Megacz writes:
> Andrew Haley <email@example.com> writes:
> > > Wow. I consider that a major omission. A lot of people write code
> > > that implicitly relies upon that assumption -- for example, a lot of
> > > crypto libraries generate randomness by spinning a thread in a while
> > > loop and then flipping a boolean to break the thread out of the loop.
> > I wouldn't rely on a crypto library that did that.
> What would you suggest instead if SecureRandom is unavailable?
PGP used keystrokes. See also http://www.cs.auckland.ac.nz/~pgut001/pubs/usenix98.pdf.
More information about the Java