[OWASP_PHPSEC] Concatenating random numbers

rahul chaudhary rahul300chaudhary400 at gmail.com
Sat Sep 28 20:13:04 UTC 2013


if I concatenate two random strings of length 32, then the attacker will
have to guess both the strings. so that would take him 2^32 + 2^32
attempts. And to guess the 64 length string, his total attempts would be
2^64. Obviously 2^64 is greater than 2* (2^32)...so my guess is that it
would be bad to concatenate. Am I correct ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp_php_security_project/attachments/20130928/d5b8113b/attachment.html>


More information about the OWASP_PHP_Security_Project mailing list