Added in API level 1

SecureRandom

open class SecureRandom : Random

kotlin.Any
↳	java.util.Random
	↳	java.security.SecureRandom

This class provides a cryptographically strong random number generator (RNG).

A cryptographically strong random number minimally complies with the statistical random number generator tests specified in FIPS 140-2, Security Requirements for Cryptographic Modules, section 4.9.1. Additionally, SecureRandom must produce non-deterministic output. Therefore any seed material passed to a SecureRandom object must be unpredictable, and all SecureRandom output sequences must be cryptographically strong, as described in RFC 1750: Randomness Recommendations for Security.

A caller obtains a SecureRandom instance via the no-argument constructor or one of the getInstance methods:

SecureRandom random = new SecureRandom();

Many SecureRandom implementations are in the form of a pseudo-random number generator (PRNG), which means they use a deterministic algorithm to produce a pseudo-random sequence from a true random seed. Other implementations may produce true random numbers, and yet others may use a combination of both techniques.

Typical callers of SecureRandom invoke the following methods to retrieve random bytes:

SecureRandom random = new SecureRandom();
       byte bytes[] = new byte[20];
       random.nextBytes(bytes);

Callers may also invoke the generateSeed method to generate a given number of seed bytes (to seed other random number generators, for example):

byte seed[] = random.generateSeed(20);

Note: Depending on the implementation, the generateSeed and nextBytes methods may block as entropy is being gathered, for example, if they need to read from /dev/random on various Unix-like operating systems. The SHA1PRNG algorithm from the Crypto provider has been deprecated as it was insecure, and also incorrectly used by some apps as a key derivation function. See Security "Crypto" provider deprecated in Android N for details.

Summary

Public constructors
`<init>()` Constructs a secure random number generator (RNG) implementing the default random number algorithm.
`<init>(seed: ByteArray!)` Constructs a secure random number generator (RNG) implementing the default random number algorithm.

Protected constructors
`<init>(secureRandomSpi: SecureRandomSpi!, provider: Provider!)` Creates a SecureRandom object.

Public methods
open ByteArray!	`generateSeed(numBytes: Int)` Returns the given number of seed bytes, computed using the seed generation algorithm that this class uses to seed itself.
open String!	`getAlgorithm()` Returns the name of the algorithm implemented by this SecureRandom object.
open static SecureRandom!	`getInstance(algorithm: String!)` Returns a SecureRandom object that implements the specified Random Number Generator (RNG) algorithm.
open static SecureRandom!	`getInstance(algorithm: String!, provider: String!)` Returns a SecureRandom object that implements the specified Random Number Generator (RNG) algorithm.
open static SecureRandom!	`getInstance(algorithm: String!, provider: Provider!)` Returns a SecureRandom object that implements the specified Random Number Generator (RNG) algorithm.
open static SecureRandom!	`getInstanceStrong()` Returns a `SecureRandom` object.
Provider!	`getProvider()` Returns the provider of this SecureRandom object.
open static ByteArray!	`getSeed(numBytes: Int)` Returns the given number of seed bytes, computed using the seed generation algorithm that this class uses to seed itself.
open Unit	`nextBytes(bytes: ByteArray!)` Generates a user-specified number of random bytes.
open Unit	`setSeed(seed: ByteArray!)` Reseeds this random object.
open Unit	`setSeed(seed: Long)` Reseeds this random object, using the eight bytes contained in the given `long seed`.

Protected methods
Int	`next(numBits: Int)` Generates an integer containing the user-specified number of pseudo-random bits (right justified, with leading zeros).

Inherited functions

From class Random

`DoubleStream!`	`doubles(streamSize: Long)` Returns a stream producing the given `streamSize` number of pseudorandom `double` values, each between zero (inclusive) and one (exclusive). A pseudorandom `double` value is generated as if it's the result of calling the method `nextDouble()`.
`DoubleStream!`	`doubles()` Returns an effectively unlimited stream of pseudorandom `double` values, each between zero (inclusive) and one (exclusive). A pseudorandom `double` value is generated as if it's the result of calling the method `nextDouble()`.
`DoubleStream!`	`doubles(streamSize: Long, randomNumberOrigin: Double, randomNumberBound: Double)` Returns a stream producing the given `streamSize` number of pseudorandom `double` values, each conforming to the given origin (inclusive) and bound (exclusive). A pseudorandom `double` value is generated as if it's the result of calling the following method with the origin and bound: <code>double nextDouble(double origin, double bound) { double r = nextDouble(); r = r * (bound - origin) + origin; if (r >= bound) // correct for rounding r = Math.nextDown(bound); return r; }</code>
`DoubleStream!`	`doubles(randomNumberOrigin: Double, randomNumberBound: Double)` Returns an effectively unlimited stream of pseudorandom `double` values, each conforming to the given origin (inclusive) and bound (exclusive). A pseudorandom `double` value is generated as if it's the result of calling the following method with the origin and bound: <code>double nextDouble(double origin, double bound) { double r = nextDouble(); r = r * (bound - origin) + origin; if (r >= bound) // correct for rounding r = Math.nextDown(bound); return r; }</code>
`IntStream!`	`ints(streamSize: Long)` Returns a stream producing the given `streamSize` number of pseudorandom `int` values. A pseudorandom `int` value is generated as if it's the result of calling the method `nextInt()`.
`IntStream!`	`ints()` Returns an effectively unlimited stream of pseudorandom `int` values. A pseudorandom `int` value is generated as if it's the result of calling the method `nextInt()`.
`IntStream!`	`ints(streamSize: Long, randomNumberOrigin: Int, randomNumberBound: Int)` Returns a stream producing the given `streamSize` number of pseudorandom `int` values, each conforming to the given origin (inclusive) and bound (exclusive). A pseudorandom `int` value is generated as if it's the result of calling the following method with the origin and bound: <code>int nextInt(int origin, int bound) { int n = bound - origin; if (n > 0) { return nextInt(n) + origin; } else { // range not representable as int int r; do { r = nextInt(); } while (r < origin \|\| r >= bound); return r; } }</code>
`IntStream!`	`ints(randomNumberOrigin: Int, randomNumberBound: Int)` Returns an effectively unlimited stream of pseudorandom `int` values, each conforming to the given origin (inclusive) and bound (exclusive). A pseudorandom `int` value is generated as if it's the result of calling the following method with the origin and bound: <code>int nextInt(int origin, int bound) { int n = bound - origin; if (n > 0) { return nextInt(n) + origin; } else { // range not representable as int int r; do { r = nextInt(); } while (r < origin \|\| r >= bound); return r; } }</code>
`LongStream!`	`longs(streamSize: Long)` Returns a stream producing the given `streamSize` number of pseudorandom `long` values. A pseudorandom `long` value is generated as if it's the result of calling the method `nextLong()`.
`LongStream!`	`longs()` Returns an effectively unlimited stream of pseudorandom `long` values. A pseudorandom `long` value is generated as if it's the result of calling the method `nextLong()`.
`LongStream!`	`longs(streamSize: Long, randomNumberOrigin: Long, randomNumberBound: Long)` Returns a stream producing the given `streamSize` number of pseudorandom `long`, each conforming to the given origin (inclusive) and bound (exclusive). A pseudorandom `long` value is generated as if it's the result of calling the following method with the origin and bound: <code>long nextLong(long origin, long bound) { long r = nextLong(); long n = bound - origin, m = n - 1; if ((n & m) == 0L) // power of two r = (r & m) + origin; else if (n > 0L) { // reject over-represented candidates for (long u = r >>> 1; // ensure nonnegative u + m - (r = u % n) < 0L; // rejection check u = nextLong() >>> 1) // retry ; r += origin; } else { // range not representable as long while (r < origin \|\| r >= bound) r = nextLong(); } return r; }</code>
`LongStream!`	`longs(randomNumberOrigin: Long, randomNumberBound: Long)` Returns an effectively unlimited stream of pseudorandom `long` values, each conforming to the given origin (inclusive) and bound (exclusive). A pseudorandom `long` value is generated as if it's the result of calling the following method with the origin and bound: <code>long nextLong(long origin, long bound) { long r = nextLong(); long n = bound - origin, m = n - 1; if ((n & m) == 0L) // power of two r = (r & m) + origin; else if (n > 0L) { // reject over-represented candidates for (long u = r >>> 1; // ensure nonnegative u + m - (r = u % n) < 0L; // rejection check u = nextLong() >>> 1) // retry ; r += origin; } else { // range not representable as long while (r < origin \|\| r >= bound) r = nextLong(); } return r; }</code>
`Boolean`	`nextBoolean()` Returns the next pseudorandom, uniformly distributed `boolean` value from this random number generator's sequence. The general contract of `nextBoolean` is that one `boolean` value is pseudorandomly generated and returned. The values `true` and `false` are produced with (approximately) equal probability. The method `nextBoolean` is implemented by class `Random` as if by: <code>public boolean nextBoolean() { return next(1) != 0; }</code>
`Double`	`nextDouble()` Returns the next pseudorandom, uniformly distributed `double` value between `0.0` and `1.0` from this random number generator's sequence. The general contract of `nextDouble` is that one `double` value, chosen (approximately) uniformly from the range `0.0d` (inclusive) to `1.0d` (exclusive), is pseudorandomly generated and returned. The method `nextDouble` is implemented by class `Random` as if by: <code>public double nextDouble() { return (((long)next(26) << 27) + next(27)) / (double)(1L << 53); }</code> The hedge "approximately" is used in the foregoing description only because the `next` method is only approximately an unbiased source of independently chosen bits. If it were a perfect source of randomly chosen bits, then the algorithm shown would choose `double` values from the stated range with perfect uniformity. [In early versions of Java, the result was incorrectly calculated as: <code>return (((long)next(27) << 27) + next(27)) / (double)(1L << 54);</code> This might seem to be equivalent, if not better, but in fact it introduced a large nonuniformity because of the bias in the rounding of floating-point numbers: it was three times as likely that the low-order bit of the significand would be 0 than that it would be 1! This nonuniformity probably doesn't matter much in practice, but we strive for perfection.]
`Float`	`nextFloat()` Returns the next pseudorandom, uniformly distributed `float` value between `0.0` and `1.0` from this random number generator's sequence. The general contract of `nextFloat` is that one `float` value, chosen (approximately) uniformly from the range `0.0f` (inclusive) to `1.0f` (exclusive), is pseudorandomly generated and returned. All 224 possible `float` values of the form m x 2-24, where m is a positive integer less than 224, are produced with (approximately) equal probability. The method `nextFloat` is implemented by class `Random` as if by: <code>public float nextFloat() { return next(24) / ((float)(1 << 24)); }</code> The hedge "approximately" is used in the foregoing description only because the next method is only approximately an unbiased source of independently chosen bits. If it were a perfect source of randomly chosen bits, then the algorithm shown would choose `float` values from the stated range with perfect uniformity. [In early versions of Java, the result was incorrectly calculated as: <code>return next(30) / ((float)(1 << 30));</code> This might seem to be equivalent, if not better, but in fact it introduced a slight nonuniformity because of the bias in the rounding of floating-point numbers: it was slightly more likely that the low-order bit of the significand would be 0 than that it would be 1.]
`Double`	`nextGaussian()` Returns the next pseudorandom, Gaussian ("normally") distributed `double` value with mean `0.0` and standard deviation `1.0` from this random number generator's sequence. The general contract of `nextGaussian` is that one `double` value, chosen from (approximately) the usual normal distribution with mean `0.0` and standard deviation `1.0`, is pseudorandomly generated and returned. The method `nextGaussian` is implemented by class `Random` as if by a threadsafe version of the following: <code>private double nextNextGaussian; private boolean haveNextNextGaussian = false; public double nextGaussian() { if (haveNextNextGaussian) { haveNextNextGaussian = false; return nextNextGaussian; } else { double v1, v2, s; do { v1 = 2 * nextDouble() - 1; // between -1.0 and 1.0 v2 = 2 * nextDouble() - 1; // between -1.0 and 1.0 s = v1 * v1 + v2 * v2; } while (s >= 1 \|\| s == 0); double multiplier = StrictMath.sqrt(-2 * StrictMath.log(s)/s); nextNextGaussian = v2 * multiplier; haveNextNextGaussian = true; return v1 * multiplier; } }</code> This uses the polar method of G. E. P. Box, M. E. Muller, and G. Marsaglia, as described by Donald E. Knuth in The Art of Computer Programming, Volume 3: Seminumerical Algorithms, section 3.4.1, subsection C, algorithm P. Note that it generates two independent values at the cost of only one call to `StrictMath.log` and one call to `StrictMath.sqrt`.
`Int`	`nextInt()` Returns the next pseudorandom, uniformly distributed `int` value from this random number generator's sequence. The general contract of `nextInt` is that one `int` value is pseudorandomly generated and returned. All 232 possible `int` values are produced with (approximately) equal probability. The method `nextInt` is implemented by class `Random` as if by: <code>public int nextInt() { return next(32); }</code>
`Int`	`nextInt(bound: Int)` Returns a pseudorandom, uniformly distributed `int` value between 0 (inclusive) and the specified value (exclusive), drawn from this random number generator's sequence. The general contract of `nextInt` is that one `int` value in the specified range is pseudorandomly generated and returned. All `bound` possible `int` values are produced with (approximately) equal probability. The method `nextInt(int bound)` is implemented by class `Random` as if by: <code>public int nextInt(int bound) { if (bound <= 0) throw new IllegalArgumentException("bound must be positive"); if ((bound & -bound) == bound) // i.e., bound is a power of 2 return (int)((bound * (long)next(31)) >> 31); int bits, val; do { bits = next(31); val = bits % bound; } while (bits - val + (bound-1) < 0); return val; }</code> The hedge "approximately" is used in the foregoing description only because the next method is only approximately an unbiased source of independently chosen bits. If it were a perfect source of randomly chosen bits, then the algorithm shown would choose `int` values from the stated range with perfect uniformity. The algorithm is slightly tricky. It rejects values that would result in an uneven distribution (due to the fact that 2^31 is not divisible by n). The probability of a value being rejected depends on n. The worst case is n=2^30+1, for which the probability of a reject is 1/2, and the expected number of iterations before the loop terminates is 2. The algorithm treats the case where n is a power of two specially: it returns the correct number of high-order bits from the underlying pseudo-random number generator. In the absence of special treatment, the correct number of low-order bits would be returned. Linear congruential pseudo-random number generators such as the one implemented by this class are known to have short periods in the sequence of values of their low-order bits. Thus, this special case greatly increases the length of the sequence of values returned by successive calls to this method if n is a small power of two.
`Long`	`nextLong()` Returns the next pseudorandom, uniformly distributed value from this random number generator's sequence. The general contract of `nextLong` is that one value is pseudorandomly generated and returned. The method `nextLong` is implemented by class `Random` as if by: <code>public long nextLong() { return ((long)next(32) << 32) + next(32); }</code> Because class `Random` uses a seed with only 48 bits, this algorithm will not return all possible `long` values.

Public constructors

<init>

Added in API level 1

SecureRandom()

Constructs a secure random number generator (RNG) implementing the default random number algorithm.

This constructor traverses the list of registered security Providers, starting with the most preferred Provider. A new SecureRandom object encapsulating the SecureRandomSpi implementation from the first Provider that supports a SecureRandom (RNG) algorithm is returned. If none of the Providers support a RNG algorithm, then an implementation-specific default is returned.

Note that the list of registered providers may be retrieved via the Security#getProviders() method.

See the SecureRandom section in the Java Cryptography Architecture Standard Algorithm Name Documentation for information about standard RNG algorithm names.

The returned SecureRandom object has not been seeded. To seed the returned object, call the setSeed method. If setSeed is not called, the first call to nextBytes will force the SecureRandom object to seed itself. This self-seeding will not occur if setSeed was previously called.

<init>

Added in API level 1

SecureRandom(seed: ByteArray!)

Constructs a secure random number generator (RNG) implementing the default random number algorithm. The SecureRandom instance is seeded with the specified seed bytes.

Note that the list of registered providers may be retrieved via the Security#getProviders() method.

See the SecureRandom section in the Java Cryptography Architecture Standard Algorithm Name Documentation for information about standard RNG algorithm names.

Parameters
`seed`	ByteArray!: the seed.

Protected constructors

<init>

Added in API level 1

protected SecureRandom(
    secureRandomSpi: SecureRandomSpi!, 
    provider: Provider!)

Creates a SecureRandom object.

Parameters
`secureRandomSpi`	SecureRandomSpi!: the SecureRandom implementation.
`provider`	Provider!: the provider.

Public methods

generateSeed

Added in API level 1

open fun generateSeed(numBytes: Int): ByteArray!

Returns the given number of seed bytes, computed using the seed generation algorithm that this class uses to seed itself. This call may be used to seed other random number generators.

Parameters
`numBytes`	Int: the number of seed bytes to generate.

Return
`ByteArray!`	the seed bytes.

getAlgorithm

Added in API level 1

open fun getAlgorithm(): String!

Returns the name of the algorithm implemented by this SecureRandom object.

Return
`String!`	the name of the algorithm or `unknown` if the algorithm name cannot be determined.

getInstance

Added in API level 1

open static fun getInstance(algorithm: String!): SecureRandom!

Returns a SecureRandom object that implements the specified Random Number Generator (RNG) algorithm.

This method traverses the list of registered security Providers, starting with the most preferred Provider. A new SecureRandom object encapsulating the SecureRandomSpi implementation from the first Provider that supports the specified algorithm is returned.

Note that the list of registered providers may be retrieved via the Security#getProviders() method.

Parameters
`algorithm`	String!: the name of the RNG algorithm. See the SecureRandom section in the Java Cryptography Architecture Standard Algorithm Name Documentation for information about standard RNG algorithm names.

Return
`SecureRandom!`	the new SecureRandom object.

Exceptions
`java.security.NoSuchAlgorithmException`	if no Provider supports a SecureRandomSpi implementation for the specified algorithm.

See Also

java.security.Provider

getInstance

Added in API level 1

open static fun getInstance(
    algorithm: String!, 
    provider: String!
): SecureRandom!

Returns a SecureRandom object that implements the specified Random Number Generator (RNG) algorithm.

A new SecureRandom object encapsulating the SecureRandomSpi implementation from the specified provider is returned. The specified provider must be registered in the security provider list.

Note that the list of registered providers may be retrieved via the Security#getProviders() method.

Parameters
`algorithm`	String!: the name of the RNG algorithm. See the SecureRandom section in the Java Cryptography Architecture Standard Algorithm Name Documentation for information about standard RNG algorithm names.
`provider`	String!: the name of the provider.

Return
`SecureRandom!`	the new SecureRandom object.

Exceptions
`java.security.NoSuchAlgorithmException`	if a SecureRandomSpi implementation for the specified algorithm is not available from the specified provider.
`java.security.NoSuchProviderException`	if the specified provider is not registered in the security provider list.
`java.lang.IllegalArgumentException`	if the provider name is null or empty.

See Also

java.security.Provider

getInstance

Added in API level 1

open static fun getInstance(
    algorithm: String!, 
    provider: Provider!
): SecureRandom!

Returns a SecureRandom object that implements the specified Random Number Generator (RNG) algorithm.

A new SecureRandom object encapsulating the SecureRandomSpi implementation from the specified Provider object is returned. Note that the specified Provider object does not have to be registered in the provider list.

Parameters
`algorithm`	String!: the name of the RNG algorithm. See the SecureRandom section in the Java Cryptography Architecture Standard Algorithm Name Documentation for information about standard RNG algorithm names.
`provider`	Provider!: the provider.

Return
`SecureRandom!`	the new SecureRandom object.

Exceptions
`java.security.NoSuchAlgorithmException`	if a SecureRandomSpi implementation for the specified algorithm is not available from the specified Provider object.
`java.lang.IllegalArgumentException`	if the specified provider is null.

See Also

java.security.Provider

getInstanceStrong

Added in API level 26

open static fun getInstanceStrong(): SecureRandom!

Returns a SecureRandom object. In Android this is equivalent to get a SHA1PRNG from AndroidOpenSSL. Some situations require strong random values, such as when creating high-value/long-lived secrets like RSA public/private keys. To help guide applications in selecting a suitable strong SecureRandom implementation, Java distributions include a list of known strong SecureRandom implementations in the securerandom.strongAlgorithms Security property.

Every implementation of the Java platform is required to support at least one strong SecureRandom implementation.

Return
`SecureRandom!`	a strong `SecureRandom` implementation

Exceptions
`java.security.NoSuchAlgorithmException`	if no algorithm is available

See Also

java.security.Security#getProperty(String)

getProvider

Added in API level 1

fun getProvider(): Provider!

Returns the provider of this SecureRandom object.

Return
`Provider!`	the provider of this SecureRandom object.

getSeed

Added in API level 1

open static fun getSeed(numBytes: Int): ByteArray!

Returns the given number of seed bytes, computed using the seed generation algorithm that this class uses to seed itself. This call may be used to seed other random number generators.

This method is only included for backwards compatibility. The caller is encouraged to use one of the alternative getInstance methods to obtain a SecureRandom object, and then call the generateSeed method to obtain seed bytes from that object.

Parameters
`numBytes`	Int: the number of seed bytes to generate.

Return
`ByteArray!`	the seed bytes.

See Also

#setSeed

nextBytes

Added in API level 1

open fun nextBytes(bytes: ByteArray!): Unit

Generates a user-specified number of random bytes.

If a call to setSeed had not occurred previously, the first call to this method forces this SecureRandom object to seed itself. This self-seeding will not occur if setSeed was previously called.

Parameters
`bytes`	ByteArray!: the array to be filled in with random bytes.

Exceptions
`java.lang.NullPointerException`	if the byte array is null

setSeed

Added in API level 1

open fun setSeed(seed: ByteArray!): Unit

Reseeds this random object. The given seed supplements, rather than replaces, the existing seed. Thus, repeated calls are guaranteed never to reduce randomness.

Parameters
`seed`	ByteArray!: the seed.

See Also

#getSeed

setSeed

Added in API level 1

open fun setSeed(seed: Long): Unit

Reseeds this random object, using the eight bytes contained in the given long seed. The given seed supplements, rather than replaces, the existing seed. Thus, repeated calls are guaranteed never to reduce randomness.

This method is defined for compatibility with java.util.Random.

Parameters
`seed`	Long: the seed.

See Also

#getSeed

Protected methods

Added in API level 1

protected fun next(numBits: Int): Int

Generates an integer containing the user-specified number of pseudo-random bits (right justified, with leading zeros). This method overrides a java.util.Random method, and serves to provide a source of random bits to all of the methods inherited from that class (for example, nextInt, nextLong, and nextFloat).

Parameters
`bits`	random bits
`numBits`	Int: number of pseudo-random bits to be generated, where `0 <= numBits <= 32`.

Return
`Int`	an `int` containing the user-specified number of pseudo-random bits (right justified, with leading zeros).