How to create RNGCryptoServiceProvider number in TSQL

Question

How to create RNGCryptoServiceProvider number in TSQL

Does anyone know a way to generate a random number of RNGCryptoServiceProvider in T-SQL without registering any .NET assemblies?

+1

sql sql-server tsql random

Keith adler 05 oct. At 19:09

source to share

2 answers

If you need to generate cryptographically secure random numbers (like hashing salts), you must use CLR functions. Checksum, hints, etc. Are not secure for cryptographic transactions.

The simplest solution is to use a CLR scalar function that calls RNGCryptoServiceProvider.

Note that many of the SQL Server crpto functions, such as EncryptByKey , already push input using cryptographically secure generated salts (with the exception of the EncryptByKey on the RC4 algorithm, which is split into SQL).

+1

Remus Rusanu 05 oct. 09 at 19:45

source to share

gbn · Accepted Answer · 2009-10-05T19:27:41+0000

SELECT CHECKSUM(NEWID())

gives you a 32 signed integer based on GUIDs. You can use this as a base: this is pretty much the best SQL way

You can use it for the RAND seed (because RAND is the same for all rows in one selection.

SELECT RAND(CHECKSUM(NEWID()))

Signed 64-bit integer:

SELECT CAST(CHECKSUM(NEWID()) as bigint) * CAST(CHECKSUM(NEWID()) as bigint)

With some games around you could dump and / or concatenate to get binary ("multiples of 4") etc. to create a byte array ... I didn't use RAND, although to emulate directly

How to create RNGCryptoServiceProvider number in TSQL

More articles: