OpenBSD Implementation Pseudo-random numbers Strong random numbers are "expensive" Insufficient quantity for network traffic arc4random() Allegedly the same as the RC4 stream cipher Periodically rekeyed with strong random numbers Not cryptographicaly perfect... but fast key scheduling weaknesses Multiple consumers increases security