This chapter covers:
- What randomness is, and why it’s important.
- Obtaining strong randomness and producing secrets for cryptography.
- What the pitfalls of randomness are.
This is the last chapter of the first part of this book, and I have one last thing to tell you before we move on to the second part of this book and learn about actual protocols used in the real world. It is something I’ve grossly negliged so far: randomness.
You must have noticed that in every cryptographic algorithm you’ve learned, with the exception of hash functions, you had to use randomness at some point. Secret keys, nonces, IVs, prime numbers, challenges, and so on. As I was going through these different concepts, randomness always came from some magic black box. This is not atypical, in cryptography whitepapers randomness is often represented by drawing an arrow with a dollar sign on top. But at some point, we do need to ask ourselves the question: where does this randomness really come from?
In this chapter, I will provide you with an answer as to what cryptography means when it mentions randomness, and I will give you pointers about the practical ways that exist to obtain randomness for real-world cryptographic applications.
For this chapter you’ll need to have read:
- Chapter 2 on hash functions.
- Chapter 3 on message authentication codes.