home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: sci.crypt
- Path: sparky!uunet!pipex!pavo.csi.cam.ac.uk!camcus!nmm1
- From: nmm1@cus.cam.ac.uk (Nick Maclaren)
- Subject: Re: unpredictable random generators (terminology)
- Message-ID: <1992Nov20.132310.7270@infodev.cam.ac.uk>
- Sender: news@infodev.cam.ac.uk (USENET news)
- Nntp-Posting-Host: bootes.cus.cam.ac.uk
- Organization: U of Cambridge, England
- References: <CH28NFT@minnie.zdv.uni-mainz.de>
- Date: Fri, 20 Nov 1992 13:23:10 GMT
- Lines: 32
-
- In article <CH28NFT@minnie.zdv.uni-mainz.de>, pom@anke.imsd.uni-mainz.DE (Prof. Dr. Klaus Pommerening) writes:
- |> In the literature there is a certain confusion as to how call this sort
- |> of (unpredictable) pseudo-random generators. Examples are:
- |> - secure
- |> - unpredictable
- |> - cryptographically strong
- |> - perfect
- |> I prefer the latter term, because it is so short, and, more
- |> important, the cryptographic strength implies that the generator
- |> passes all efficient statistical tests -- truly perfect, isn't it?
-
- I am afraid that this isn't true. Consider the following generators:
-
- 1) A multiplicative congruential generator with known modulus of the
- order of 10^1000 and a known multiplier that is near-optimal in the spectral
- test, sense. This would be excellent for simulation (if fast enough!) but
- useless for serious cryptographic work.
-
- 2) An effectively independent random number generator that delivers
- numbers with an unknown relative error in their uniformity of O(10^-3). This
- would be excellent for most cryptographic use, and is useless for most
- simulation.
-
-
-
- Nick Maclaren
- University of Cambridge Computer Laboratory,
- New Museums Site, Pembroke Street,
- Cambridge CB2 3QG, England.
- Email: nmm1@cus.cam.ac.uk
- Tel.: +44 223 334761
- Fax: +44 223 334679
-
