Guarantees fairness, MD5, etc

In runet increasingly appears casinos offering so-called "guarantee of fairness" or "guarantee randomness" (so-called "and quotes do not mean that I do not believe these assurances, I just want to define the term, my opinion, read on). Currently, in one form or another, with certain restrictions, guarantees fairness is a casino, for example, Grand Casino, Va-Bank (software by "Globo"). What are the guarantees of fairness? Are they something guaranteed, and if the guarantee, then what? Are casinos around assurance mechanism and to deceive the player? Try to understand.

The general principle of the mechanism guarantees fairness is the same: the casino before the game creates a sequence of numbers / cards / characters that will drop the player in the future. The player plays the established sequence, and at the end of the game is able to verify that indeed fell out exactly what was planned. Can you say that this mechanism ensures fairness online casino? You can, but only 90%. Ideally, an honest casino, this is where the results of the games is entirely coincidental. In this case, the sequence generated by the casinos and, in principle, a casino may establish and non-random sequence. Fortunately, non-random sequence by itself is not dangerous, because the main fear a player that the casino will play against his bet! The player puts on a black and red slips casino. When the sequence is created in advance is impossible. It is safe to do high-stakes, being sure that the casinos do not "help" of the bet is lost. In my opinion, to create a non-random sequence under these conditions, at least no sense (because the player does not predict the rate, albeit much better working theory of probability), as a maximum - it is dangerous (and suddenly someone will analyze and find a pattern). In general, perhaps, for the existing systems would be more correct to use the term "guarantee constancy of the results, but given the weak a practical opportunity to benefit from a non-random generation, I am quite prepared to agree with the term" guarantee of fairness. " Personally I am quite satisfied with these conditions: I am not afraid of 10 red in a row in roulette, if you can shift the deck at any place, with the pleasure of playing a card game, except on the slots of such warranties are of no use - this is where the casino can really lay the 50 losses contract and the player can not do anything. Questions arise with video poker, probably also need a mechanism such as moving the deck, otherwise the casino would make any top 10 charts, including strongly in favor of the player. In general, some issues remain to implement, but in general they can be solved and a critical impact on the integrity not have.

At the moment, in practice there are two mechanisms for the technical implementation of guarantee schemes. The first and fundamental involves the use of a key sequence on algorithm MD5, the second - sending Password protected files. We consider these methods in detail.

If we talk about the algorithm MD5, it is intended to serve as a unique signature as well as a means of storing passwords. Based on background information of any length is generated 128-bit sequence (signature) is usually written by a 32-hexadecimal characters. Moreover, the algorithm is structured so that changes only one bit in the original message will result in very significant difference MD5-signatures. In addition, MD5-signature is a hash function, that is, knowing the signature, it is impossible to decrypt the original message. All these properties cause the widespread use of MD5 and other similar algorithms in a variety of security systems: for storing passwords (from the Internet to bank systems), use as a signature (eg, PGP), to confirm the immutability of the content (in Unix-systems or online casinos).

Currently there is no doubt about the applicability of MD5 algorithm to guarantee fairness in online casinos, with the use of this method is convenient and profitable as a casino, and the user. In this case the user does not need to download the actual files, which protects the casino from the theoretical possibility of breaking in and saves the traffic. Nevertheless, the checksum is the MD5 ensures constancy of the source file that each user can easily check, using the numerous programs the generation of MD5 signatures. However, there is little a fly in the ointment. Trying to brute messages with identical MD5-signature on a modern computer would take about a thousand years, but since late 2004, there are reports about detection algorithm to quickly look for conflicts. That is, knowing the background information, you can create a modified message with the same MD5-signature. On many forums talking about the end of MD5, however it is not so. Until now, there is no way to find a suitable initial sequence knowing only the signature. As regards the establishment of several modified messages with the same signature, there are several reasons not to fear: first, the selection takes 1 hour on a supercomputer, and about 4 hours personalke (data from two different algorithms), and secondly, the original message will then be changed random, will be added to dozens of random characters, it's hard not to notice, thirdly, no one algorithm for creating conflicts has not yet been disclosed and the actual programs that use it, no. In general, if our sequence is strictly structured, then create an alternate sequence, without disturbing the structure, it is simply impossible. So, despite the hype around the collision, the real possibility to circumvent MD5-signature and shove the modified file no!

Shipping Password protected files eliminates the doubt that the casino that would be able to change, because the file already in your computer, and the possibility of changing the contents of the archive, using an alternative password (as voiced version) talk is ridiculous. Currently used encryption algorithms such opportunities do not provide. That is, if you are using standard data logger and password protection program, it guarantees the immutability information. However, this method has a disadvantage from the standpoint of the casino and the player, first of all, it's extra traffic (at least at the current embodiment, in the Grand Casino this may be a considerable amount of files), and secondly, scanty, but the danger for casino that player will be able to open the archive.

In general, both methods of implementation of the "guarantee of honesty" have the right to life, using MD5 longer protects the casino, the passwords to the files - the player. Both of these methods are absolutely safe to confirm that invariably create a sequence. Now, casinos can focus on proving that a sequence of random. In my opinion, one of the easiest ways may be open publication of all played sequences to players if they wish to undertake statistical studies on large amounts of data. Although, once again, the casino many games simply do not make sense to create non-random sequence, so that the need for such evidence is not too large.