You want a cryptographically secure PRNG, but you don't need something as provably secure as BBS. Even more importantly, you need a cryptographically secure seed. (Fortunately, easy on Linux, where you can just use /dev/urandom.)
There are any number of suitable CPRNGs. Probably a good safe bet would be the ANSI SP800-90 Deterministic Random Bit Generator (CTR-DRBG). Given something like 128-bit AES, the generator reduces to maintaining a 128-bit IV and a 128-bit key, and for each 128 bits of PRNG output, increment the IV and encrypt it with the key. I can supply implementation code if desired. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
