[Development] websockets (was RE: Qt 5.3 Feature freeze is coming quite soon...)
Konrad Rosenbaum
konrad at silmor.de
Wed Feb 12 15:44:18 CET 2014
On Wednesday, Wednesday 12 February 2014 at 08:01, Kurt Pattyn wrote:
> On 11 Feb 2014, at 19:14, Thiago Macieira <thiago.macieira at intel.com> wrote:
> > Em ter 11 fev 2014, às 16:26:44, Tony Van Eerd escreveu:
> >> http://channel9.msdn.com/Events/GoingNative/2013/rand-Considered-Harmful
> >
> > No doubt. And we should have a more secure generator, at least until we
> > can rely on std::random.
>
> We can always 'duplicate' some code from the std::random library :-)
> How 'secure' should this be? Is a Mersenne-Twister for instance 'secure'
> enough?
Secure enough for a simple Monte-Carlo style simulation? Yes, definitely,
that's what it was designed for.
Secure enough for the initial WebSocket implementation in Qt 5.3? Well, not
really, but let's go with it (qrand) and fix it in 5.4.
Secure enough for cryptography? Hell no!
> > Anyone up for creating a nice function for Qt 5.4?
Ping me when the reviews are due. I'm very interested in it, but lack time for
programming it.
Konrad
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.qt-project.org/pipermail/development/attachments/20140212/0e038194/attachment.sig>
More information about the Development
mailing list