Post by izaqyos Post by David Wagner
AES-CTR, 3DES-CTR, or some such scheme.
exactly what I need. only problem is that I need low complexity (or
more specifically, good performance).
Guess I'd have to browse the code, or benchmark them...
AES-CTR is very fast..Only about 3-5 times slower than LCG with some
benchmarks i did. I use them for MCMC simulations. As far as nonlinear
generators go, thats about as good as it gets for speed.
Remember that if you are going for the "proper" secure mode. Usually the key
is reseeded with the generator after a set of random bits are requested.
The counter is *not* reset. The idea is that each successive set of bits
(aka block) is more independent and the counter still guarantees a long
period. But then you are re-keying frequently with the appropriate
Genrally fast==insecure. These days we don't need to be so paranoid about