Difference between java.util.Random and java.security.SecureRandom
My team got handed over some server side code (in Java) that generates random tokens and I have a question regarding the same – The purpose of these tokens is fairly sensitive – used for session id, password reset links etc. So they do need to be cryptographically random to avoid somebody guessing them or … Read more