Said Outgajjouft <[EMAIL PROTECTED]> writes: > Can you actually only use software code to achieve true randomness?
Who cares? You don't need "true" randomness. You need "good enough". What "good enough" is depends on your application, the potential threats, the sophisitcation of the attackers, the other secuirty problems your application might have, etc. Even the best true randomness doesn't protect your application from rubber hose cryptanalysis. //art
