Scientists in the US have built a system for creating truly random numbers which cannot be tampered with by a third party.

Random numbers might be needed to pick jury members out of a field without bias, or provide security algorithms. Quantum events offer the promise of true randomness. Meanwhile, a phenomenon called quantum entanglement, which determines that two quantum particles emitted at the same time can remain forever linked in their state, no matter how far apart they are, allows for boffins to check their work.

While entanglement offers a way of checking a truly random source of data, such systems can potentially be spoofed if a rogue actor secretly mistimes one of the measurements.

Boffins pull off quantum leap in true random number generation [1]READ MORE

A [2]paper published in Nature by University of Colorado, Boulder, postdoctoral student Gautam Kavuri and colleagues, describes a new system which provides a publicly available hash chain, greatly raising the difficulty of tampering with the record of the timing of quantum measurements. The record of measurements is also available online.

In an accompanying article, Peter Brown, associate professor at France's Institut Polytechnique de Paris, said: "Kavuri and colleagues combine the high security of quantum random-number generation with a classical protocol that ensures not only that the output is truly random, but also that the randomness can be verified."

[3]

The Colorado University Randomness Beacon (CURBy) relies on two entangled photons measured at two sites at the same time, 110 meters apart. The sequence of measurement is recorded publicly on a hash chain, which allows observers to detect any attempt to tamper with it. The research team generated random numbers 7,454 times in 40 days and found that a truly random number was generated 7,434 times, which they call a 99.7 percent success rate.

[4]Google: How to make any AMD Zen CPU always generate 4 as a random number

[5]Cloud brute-force attack cracks Google users' phone numbers in minutes

[6]What is missing from the web? We're asking for Google

[7]UPS supplier's password policy flip-flops from unlimited, to 32, then 64 characters

Brown noted that for a bad actor to control the final output of the random-number generator undetected, the records of the entanglement measurements and all the hash chains would need to be compromised across the experiment's disparate geographical locations. "Compared with previous results, the difficulty of attacking the system undetected is substantially increased," he said.

Brown continued: "The use of traceable quantum randomness to prevent corruption and distribute resources could strengthen the public's trust in these systems. In the current era of misinformation, at least we will be able to trust in randomness." ®

Get our [8]Tech Resources



[1] https://www.theregister.com/2018/04/11/nist_random_numbers_quantum_mechanics/

[2] https://www.nature.com/articles/s41586-025-09054-3

[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_offbeat/science&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aE2chw0lbGAFup71x2A7gwAAANE&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0

[4] https://www.theregister.com/2025/02/04/google_amd_microcode/

[5] https://www.theregister.com/2025/06/10/google_brute_force_phone_number/

[6] https://www.theregister.com/2024/08/30/what_is_missing_from_web/

[7] https://www.theregister.com/2024/09/23/cyberpower_password_changes/

[8] https://whitepapers.theregister.com/