Frequently Asked Questions

Pure Random is a certified Hardware Random Number Generator (HRNG) service. We use dedicated cryptographic hardware — AWS CloudHSM — to generate true random numbers from physical entropy sources, not software algorithms. Every number is logged to an immutable audit trail that anyone can verify.

Yes. Our Hardware Security Module generates randomness from thermal noise — the unpredictable movement of electrons in silicon caused by heat. This is a quantum-level physical phenomenon that is fundamentally unpredictable, unlike software pseudo-random generators which use deterministic algorithms.

Software random number generators (PRNGs) use mathematical algorithms that produce sequences that appear random but are actually deterministic. Given the same starting "seed", they always produce the same sequence. Our hardware RNG uses true physical entropy — there's no seed, no algorithm to reverse-engineer, and no way to predict outcomes.

The public generator on this website is free for personal and light use. For commercial applications, high-volume usage, or API access, please contact us about our paid plans which include higher rate limits, dedicated support, and SLAs.

Our underlying hardware (AWS CloudHSM) is certified to FIPS 140-2 Level 3 — the highest level of physical security for cryptographic modules. Our complete RNG system is certified to GLI-19, the gaming industry standard for random number generators. We've also passed all 15 tests in the NIST SP 800-22 statistical test suite.

FIPS 140-2 is a US government security standard for cryptographic modules. Level 3 requires physical tamper-resistance and tamper-evidence — if someone tries to physically access the internals of the HSM, it will detect the attempt and zeroize (destroy) all keys and sensitive data. This prevents hardware-level attacks.

GLI-19 is a technical standard published by Gaming Laboratories International for evaluating random number generators used in gaming and gambling. It covers statistical testing, unpredictability, non-repeatability, and security. GLI-19 certification is required or accepted by gambling regulators in many jurisdictions worldwide.

We use rejection sampling to eliminate modulo bias. When you request a number from 1-100, we don't simply take a large random number and use modulo 100 (which would slightly favour lower numbers). Instead, we reject any values that would cause bias and only accept values that map uniformly to your requested range.

All infrastructure runs in AWS eu-west-2 (London). Your generated numbers and audit logs are stored in the UK. We do not transfer data outside of AWS's London region.

The free public API allows up to 100 numbers per request, with a maximum range of 10 million. Rate limits apply to prevent abuse. For higher limits, bulk generation, or commercial use, please contact us about paid API access.

Every generation returns an Audit ID (a UUID). Take this ID to our Verify page and enter it. We'll show you the exact numbers generated, the timestamp, the range used, and other details. This allows anyone to independently confirm the results of a draw.

No. Our database has triggers that prevent any UPDATE or DELETE operations on audit records — even by database administrators. Once a number is generated and logged, that record is immutable. Additionally, all database access is logged via pgaudit and infrastructure changes are tracked via AWS CloudTrail.

Audit records are retained indefinitely. We do not delete historical generation records.

Absolutely — this is one of our primary use cases. The combination of certified hardware randomness and instant public verification makes Pure Random ideal for running fair, transparent prize draws. Participants can verify results using the Audit ID.

Yes. Our GLI-19 certification means Pure Random meets the technical standards required by many gambling regulators. If you're building a regulated gaming application, please contact us to discuss your specific requirements and jurisdiction.

Our hardware entropy is suitable for cryptographic seeding. However, note that our public API returns scaled integers within a range, not raw bytes. For cryptographic key generation, you would typically need direct HSM access or our raw entropy API (available on enterprise plans).