Date: Fri, 12 Dec 1997 18:35:38 -0800 (PST)
From: Jan Luehe <Jan.Luehe@Eng>
Subject: Re: Thread spinner seeding mechanism problems
To: java-security@web1.javasoft.com, mmeyer@aurorasim.com
Matt:
> I am in need of a way to avoid having the sun.security.provider.DSA
> object
> instantiate a SecureRandom with the default, "Thread -spinner", seeding
> mechanism. I am hypothesizing that it is calling new SecureRandom() in
> the
> first call to sign() , based on running it in jdb. I was hoping I could
> set a
> SecureRandom with my own seed on it via engineSetParameter, but I
> couldn't seem to guess the right name. Thread spinner seeding is
> causing me alot of headaches that
> I won't go into right now, and I need to make sure it doesn't happen
> anywhere in
> my system.
The Signature class in JDK1.2 has a new method:
public final void initSign(PrivateKey privateKey, SecureRandom random)
which lets you pass your own source of randomness that you can seed.
A beta release of JDK1.2 will be made available very soon.
Jan