Closed Bug 502420 Opened 15 years ago Closed 15 years ago

predictable random number generator used in web browsers

Categories

(Firefox :: Security, defect)

defect
Not set
critical

Tracking

()

RESOLVED DUPLICATE of bug 322529

People

(Reporter: michael.s.gilbert, Unassigned)

References

()

Details

User-Agent: Midori/0.1.6 (X11; Linux; U; en-us) WebKit/532+ Build Identifier: hello, it has been discovered that all of the major web browsers use a predictable pseudo-random number generator (PRNG). please see reference [0]. the robust solution is to switch to a provably unpredictable PRNG such as Blum Blum Shub [1,2]. [0] http://www.trusteer.com/temporary-user-tracking-in-major-browsers [1] Lenore Blum, Manual Blum, and Michael Shub, "A Simple Unpredictable Pseudo-Random Number Generator," SIAM Journal on Computing, volume 15, pages 364-383, May 1986. [2] http://rng.doesntexist.org/gmpbbs Reproducible: Always
Status: UNCONFIRMED → RESOLVED
Closed: 15 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.