iaik.security.random

Class MessageDigestRandom

java.lang.Object

java.util.Random

java.security.SecureRandom

iaik.security.random.SecRandom

iaik.security.random.MessageDigestRandom

All Implemented Interfaces:

java.io.Serializable

Direct Known Subclasses:

MD5Random, RipeMd128Random, RipeMd160Random, SHA1Random, SHA256Random, SHA384Random, SHA512Random, WhirlpoolRandom

public abstract class MessageDigestRandom
extends SecRandom

This class implements a secure pseudo-random number generator based on a MessageDigest. It cannot be used directly and has to be subclassed. Subclasses just have to call the superclass constructor with the MessageDigest object as parameter, everything else is taken care of. It will work for digests of any length.

The method used to generate the random bytes is based on a paper from BSI (Bundesamt fuer Sicherheit in der Informationstechnik) called AIS 20 (Anwendungshinweise und Interpretationen zum Schema), version 2.0, 02.12.1999. This algorithm is described in example E.5 of this paper.

Seeding of this implementation causes the new seed value to be concatenated with the existing internal seed. The hash of this concatenation becomes the new internal seed.
This means that the entropy of the internal seed is limited by the size of the hash values produced by the used hash algorithm; i.e. 160 bit for SHA-1.

Given a good message digest algorithm, the output will be evenly distributed. Due to the one-way property of the message digest function, it is infeasible to deduct the seed from the random bytes. The same holds for predicting future (or past) output knowing only previous and/or following output bytes.

Version:

File Revision 18

See Also:

MD5Random, SHA1Random, SHA256Random, SHA384Random, SHA512Random, SHA1FIPS186Random, SHA384FIPS186Random, SHA512FIPS186Random, RipeMd160Random, RipeMd160FIPS186Random, SeedGenerator, Serialized Form

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	MessageDigestRandom(java.security.MessageDigest digest, java.lang.String algorithm) Constructor for use by subclasses.

Method Summary

Methods inherited from class iaik.security.random.SecRandom

getAlgorithm, getDefault, setDefault, setDefault, setSeed

Methods inherited from class java.security.SecureRandom

generateSeed, getInstance, getInstance, getInstance, getProvider, getSeed, next, nextBytes, setSeed, setSeed

Methods inherited from class java.util.Random

nextBoolean, nextDouble, nextFloat, nextGaussian, nextInt, nextInt, nextLong

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

MessageDigestRandom

protected MessageDigestRandom(java.security.MessageDigest digest,
                   java.lang.String algorithm)

Constructor for use by subclasses. The given MessageDigest object itself will be used, it will not be cloned.