rfc:csrandombytes
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
rfc:csrandombytes [2012/01/08 16:10] – [Current PHP APIs to the syetem CSPRNG] fsb | rfc:csrandombytes [2012/01/08 16:13] – [Why PHP's API's today are inadequate] fsb | ||
---|---|---|---|
Line 41: | Line 41: | ||
If all the above fail then the script will not be able to read a string from the system’s CSPRNG. As a consequence it may fail to operate properly, either by performing its task insecurely or by refusing to preform the task. Whenever this happens, neither the script nor the operating system is to blame—at fault is either the PHP API or the system configuration, | If all the above fail then the script will not be able to read a string from the system’s CSPRNG. As a consequence it may fail to operate properly, either by performing its task insecurely or by refusing to preform the task. Whenever this happens, neither the script nor the operating system is to blame—at fault is either the PHP API or the system configuration, | ||
- | [An example of a PHP package that works roughly along the lines set out above is [[https:// | + | [An example of a PHP package that works roughly along these lines is [[https:// |
Line 48: | Line 48: | ||
There are two reasons why this situation is unsatisfactory. First, PHP programmers should be able to write scripts that use CS random data without risking failure in the field due to unfortunate configuration of the production environment. The programmer, after all, may have no influence over the production environment and might not be in a position to dictate requirements. Nevertheless, | There are two reasons why this situation is unsatisfactory. First, PHP programmers should be able to write scripts that use CS random data without risking failure in the field due to unfortunate configuration of the production environment. The programmer, after all, may have no influence over the production environment and might not be in a position to dictate requirements. Nevertheless, | ||
- | Second, even if the probability | + | Second, even if the probability |
==== Does anything need to be done? ==== | ==== Does anything need to be done? ==== |
rfc/csrandombytes.txt · Last modified: 2021/03/27 14:30 by ilutov