[Python-ideas] Should our default random number generator be secure?

Sven R. Kunze srkunze at mail.de
Wed Sep 9 21:09:05 CEST 2015


On 09.09.2015 18:53, Donald Stufft wrote:
> This would
> essentially be inverting the relationship today, where it defaults to insecure
> and you have to opt in to secure.

Not being an expert on this but I agree with this assessment.

You can determine easily whether your program runs fast enough. If not, 
you can fix it.
You cannot determine easily whether something you made is 
cryptographically secure.

The default should be as secure as possible.


Best,
Sven


More information about the Python-ideas mailing list