...
This rule appears in the C++ Secure Coding Standard as MSC30-CPP. Do not use the rand() function for generating pseudorandom numbers.
Related Guidelines
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="e00332dd-5107-49c7-9d60-e636c12ea454"><ac:plain-text-body><![CDATA[ | [[MITRE 2009 | AA. Bibliography#MITRE 09]] | [CWE ID 330 | http://cwe.mitre.org/data/definitions/330.html] "Use of Insufficiently Random Values" ]]></ac:plain-text-body></ac:structured-macro> | ||
| CWE ID 327, "Use of a Broken or Risky Cryptographic Algorithm" | |||||
| CWE ID 330, "Use of Insufficiently Random Values" | |||||
| CWE ID 333, "Improper Handling of Insufficient Entropy in TRNG" | |||||
| CWE ID 332, "Insufficient Entropy in PRNG" | |||||
| CWE ID 337, "Predictable Seed in PRNG" | |||||
| CWE ID 336, "Same Seed in PRNG" |
Bibliography
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="084b9ff0988e73af-42e4b1ca-41c14579-85c28da7-3625b9fa9f069e720baea0fd"><ac:plain-text-body><![CDATA[ | [[API 2006 | https://www.securecoding.cert.org/confluence/display/java/AA.+Java+References#AA.JavaReferences-API06]] | [Class Random | http://java.sun.com/javase/6/docs/api/java/util/Random.html] | ]]></ac:plain-text-body></ac:structured-macro> |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="eee70f6c26b7834c-d8510d49-45e34cf9-925e9603-c56db03a817aea096c6d9d53"><ac:plain-text-body><![CDATA[ | [[API 2006 | https://www.securecoding.cert.org/confluence/display/java/AA.+Java+References#AA.JavaReferences-API06]] | [Class SecureRandom | http://java.sun.com/javase/6/docs/api/java/security/SecureRandom.html] | ]]></ac:plain-text-body></ac:structured-macro> |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="18fa00c0dc346da5-0cbb3c27-4d394ed4-bbe0b212-28835bed3a6e962390debeec"><ac:plain-text-body><![CDATA[ | [[Find Bugs 2008 | https://www.securecoding.cert.org/confluence/display/java/AA.+Java+References#AA.JavaReferences-FindBugs08]] | BC: Random objects created and used only once | ]]></ac:plain-text-body></ac:structured-macro> | |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="085b5b5751fb0f27-6fb44afa-4c044dd0-8021a8a9-a001ec47369604e2378bb679"><ac:plain-text-body><![CDATA[ | [[Monsch 2006 | AA. Bibliography#Monsch 06]] |
| ]]></ac:plain-text-body></ac:structured-macro> |
...