Comments on: Random string generator http://awads.net/wp/2005/07/28/random-string-generator/ News, views, tips and tricks on Oracle and other fun stuff Tue, 07 Oct 2008 06:40:44 +0000 http://wordpress.org/?v=2.5 By: Eddie Awad http://awads.net/wp/2005/07/28/random-string-generator/#comment-325 Eddie Awad Tue, 22 Nov 2005 20:52:03 +0000 http://awads.net/wp/?p=87#comment-325 <p>edcas, the seed is needed to generate the random number or string. The seed can be a number or a string. If you do not initialize the generator by explicitly calling the seed procedure, a default seed is used, in that case, it is equal to:</p> <pre> TO_CHAR(SYSDATE,'MM-DD-YYYY HH24:MI:SS') || USER || USERENV('SESSIONID') </pre> <p>So, if you do not seed, and then call dbms_random.value, chances are you will not get the same random value.</p> <p>The dbms_random package specification says: <em>If this package is seeded twice with the same seed, then accessed in the same way, it will produce the same results in both cases.</em></p> <p>So, your observation is correct, given the same seed over and over again, you will get the same result each time you execute the same dbms_random procedure.</p> <p>How can a seed be used? well, one example is when you want to generate a random password. You would seed the generator with the username, so distinct usernames will have distinct random passwords, but same usernames will have the same random password since the seed (username) is the same.</p> edcas, the seed is needed to generate the random number or string. The seed can be a number or a string. If you do not initialize the generator by explicitly calling the seed procedure, a default seed is used, in that case, it is equal to:

TO_CHAR(SYSDATE,'MM-DD-YYYY HH24:MI:SS') ||
USER || USERENV('SESSIONID')

So, if you do not seed, and then call dbms_random.value, chances are you will not get the same random value.

The dbms_random package specification says: If this package is seeded twice with the same seed, then accessed in the same way, it will produce the same results in both cases.

So, your observation is correct, given the same seed over and over again, you will get the same result each time you execute the same dbms_random procedure.

How can a seed be used? well, one example is when you want to generate a random password. You would seed the generator with the username, so distinct usernames will have distinct random passwords, but same usernames will have the same random password since the seed (username) is the same.

]]> By: edcas http://awads.net/wp/2005/07/28/random-string-generator/#comment-322 edcas Tue, 22 Nov 2005 07:50:37 +0000 http://awads.net/wp/?p=87#comment-322 <p>Hi Eddie,</p> <p>I can't really figure out what's the use for SEED procedure here. Can you explain further? </p> <p>As I execute the code below, it give me the same result.</p> <pre> BEGIN dbms_random.seed(1234535678); dbms_output.put_line('Random1: '||dbms_random.value); END; Random1: .62004818671882084550610341425311827476 </pre> Hi Eddie,

I can’t really figure out what’s the use for SEED procedure here. Can you explain further?

As I execute the code below, it give me the same result.

BEGIN
dbms_random.seed(1234535678);
dbms_output.put_line('Random1: '||dbms_random.value);
END;

Random1: .62004818671882084550610341425311827476
]]> By: Eddie http://awads.net/wp/2005/07/28/random-string-generator/#comment-42 Eddie Fri, 29 Jul 2005 18:38:38 +0000 http://awads.net/wp/?p=87#comment-42 Robert, I could not understand your problem. However, here are some clarifications about the package <code>DBMS_RANDOM</code> which I'm sure you already know, but does not hurt to add them here for future reference: The package <code>DBMS\_RANDOM</code> is only available in Oracle version 8 and above. If you want to encrypt sensitive data, then you should use the built-in package <code>DBMS\_OBFUSCATION\_TOOLKIT</code>, not <code>DBMS\_RANDOM</code> . For an analysis of <code>DBMS\_RANDOM</code>, how it works and the quality of the generated random numbers or strings, I suggest <a href="http://www.dbasupport.com/oracle/ora9i/unwrappingDBMS01_01.shtml" rel="nofollow">this</a> article. The following functions are not documented in <a href="http://download-west.oracle.com/docs/cd/A87860_01/doc/appdev.817/a76936/dbms_ra2.htm" rel="nofollow">Oracle 8i</a> and <a href="http://download-west.oracle.com/docs/cd/B10501_01/appdev.920/a96612/d_rando2.htm" rel="nofollow">Oracle 9i</a> <code>DBMS\_RANDOM</code>'s documentation, but they are in <a href="http://download-west.oracle.com/docs/cd/B14117_01/appdev.101/b10802/d_random.htm#ARPLS040" rel="nofollow">Oracle 10g</a>'s: <code>NORMAL</code>, <code>VALUE</code> and <code>STRING</code>. A look at the source code of <code>DBMS\_RANDOM</code> reveals these hidden and useful functions. Robert,
I could not understand your problem. However, here are some clarifications about the package DBMS_RANDOM which I’m sure you already know, but does not hurt to add them here for future reference:

The package DBMS\_RANDOM is only available in Oracle version 8 and above.

If you want to encrypt sensitive data, then you should use the built-in package DBMS\_OBFUSCATION\_TOOLKIT, not DBMS\_RANDOM .

For an analysis of DBMS\_RANDOM, how it works and the quality of the generated random numbers or strings, I suggest this article.

The following functions are not documented in Oracle 8i and Oracle 9i DBMS\_RANDOM’s documentation, but they are in Oracle 10g’s: NORMAL, VALUE and STRING. A look at the source code of DBMS\_RANDOM reveals these hidden and useful functions.

]]> By: Robert Vollman http://awads.net/wp/2005/07/28/random-string-generator/#comment-41 Robert Vollman Fri, 29 Jul 2005 15:47:50 +0000 http://awads.net/wp/?p=87#comment-41 Speaking of random numbers, what do you think about this problem of mine: http://thinkoracle.blogspot.com/2005/05/random-numbers.html Speaking of random numbers, what do you think about this problem of mine:

http://thinkoracle.blogspot.com/2005/05/random-numbers.html

]]>