Page History

...

This rule appears in the C++ Secure Coding Standard as MSC30-CPP. Do not use the rand() function for generating pseudorandom numbers.

Related Guidelines

MITRE CWE	CWE ID 330,	<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="b2323963-4bd3-4df7-8f71-733620ce58b4"><ac:plain-text-body><![CDATA[	[[MITRE 2009	AA. Bibliography#MITRE 09]]	[CWE ID 330	http://cwe.mitre.org/data/definitions/330.html] "Use of Insufficiently Random Values" ]]></ac:plain-text-body></ac:structured-macro>
	CWE ID 327, "Use of a Broken or Risky Cryptographic Algorithm"
	CWE ID 330, "Use of Insufficiently Random Values"
	CWE ID 333, "Improper Handling of Insufficient Entropy in TRNG"
	CWE ID 332, "Insufficient Entropy in PRNG"
	CWE ID 337, "Predictable Seed in PRNG"
	CWE ID 336, "Same Seed in PRNG"

Bibliography

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="12fbe52b426f69f1-b7f14ec8-4d1940df-881f926d-2ee8e4bf105e68ab49fc3531"><ac:plain-text-body><![CDATA[	[[API 2006	https://www.securecoding.cert.org/confluence/display/java/AA.+Java+References#AA.JavaReferences-API06]]	[Class Random	http://java.sun.com/javase/6/docs/api/java/util/Random.html]	]]></ac:plain-text-body></ac:structured-macro>
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="ec14367773fcfa6b-1541f003-450c420b-b8e7a232-e10d333812414a38226bba7d"><ac:plain-text-body><![CDATA[	[[API 2006	https://www.securecoding.cert.org/confluence/display/java/AA.+Java+References#AA.JavaReferences-API06]]	[Class SecureRandom	http://java.sun.com/javase/6/docs/api/java/security/SecureRandom.html]	]]></ac:plain-text-body></ac:structured-macro>
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="2324e5af49e5a713-482c326b-48624cbb-ab05928c-2e485cd258c05f62058a8f4f"><ac:plain-text-body><![CDATA[	[[Find Bugs 2008	https://www.securecoding.cert.org/confluence/display/java/AA.+Java+References#AA.JavaReferences-FindBugs08]]	BC: Random objects created and used only once	]]></ac:plain-text-body></ac:structured-macro>
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="8c664951740ec9e9-254ac107-40e04575-b33195c4-9327f038381c3f44cde0ad2b"><ac:plain-text-body><![CDATA[	[[Monsch 2006	AA. Bibliography#Monsch 06]]		]]></ac:plain-text-body></ac:structured-macro>

...

Space shortcuts

Page tree

Versions Compared

Old Version 77

New Version 78

Key

Related Guidelines

Bibliography