The Crypto.getRandomValues() method lets you get cryptographically strong random values. The array given as the parameter is filled with random numbers (random in its cryptographic meaning).
To guarantee enough performance, implementations are not using a truly random number generator, but they are using a pseudo-random number generator seeded with a value with enough entropy. The PRNG used differs from one implementation to the other but is suitable for cryptographic usages. Implementations are also required to use a seed with enough entropy, like a system-level entropy source.
Syntax
cryptoObj.getRandomValues(typedArray);
Parameters
typedArray- Is an integer-based
TypedArray, that is anInt8Array, aUint8Array, anInt16Array, aUint16Array, anInt32Array, or aUint32Array. All elements in the array are going to be overwritten with random numbers.
Exceptions
- A
QuotaExceededErrorDOMExceptionis thrown if the requested length is greater than 65536 bytes.
Examples
/* Assuming that window.crypto.getRandomValues is available */
var array = new Uint32Array(10);
window.crypto.getRandomValues(array);
console.log("Your lucky numbers:");
for (var i = 0; i < array.length; i++) {
console.log(array[i]);
}
For a more secure implementation of Math.random, you could try this:
function secureMathRandom() {
// Divide a random UInt32 by the maximum value (2^32 -1) to get a result between 0 and 1
return window.crypto.getRandomValues(new Uint32Array(1))[0] / 4294967295;
}
Specification
| Specification | Status | Comment |
|---|---|---|
| Web Cryptography API | Recommendation | Initial definition |
Browser compatibility
The compatibility table on this page is generated from structured data. If you'd like to contribute to the data, please check out https://github.com/mdn/browser-compat-data and send us a pull request.
Update compatibility data on GitHub
| Desktop | Mobile | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
getRandomValues | Chrome Full support 11 | Edge Full support 12 | Firefox Full support 26 | IE Full support 11 | Opera Full support 15 | Safari Full support 6.1 | WebView Android Full support Yes | Chrome Android Full support 18 | Edge Mobile Full support 12 | Firefox Android Full support 26 | Opera Android Full support 14 | Safari iOS Full support 6.1 | Samsung Internet Android Full support Yes |
Legend
- Full support
- Full support
See also
Window.cryptoto get aCryptoobject.Math.random, a non-cryptographic source of random numbers.
Document Tags and Contributors
Tags:
Contributors to this page:
y6nH,
Richienb,
mdnwebdocs-bot,
mfluehr,
fscholz,
herrniemand,
abbycar,
indolering,
morenoh149,
mitar,
mbseid,
Jeremie,
Krinkle,
kscarfone,
ElijahLynn,
teoli,
soren121,
mkato,
dchest,
raztus,
evilpie,
SaschaNaz,
wbond,
mormegil,
Sheppy,
ymx
Last updated by:
y6nH,