Is Roulety completely free to use?

Yes, Roulety is 100% free. There are no premium plans, hidden fees, or feature locks. All functionality is available to everyone without creating an account.

Is the spinner wheel truly random?

Yes. Roulety uses the Web Crypto API (window.crypto.getRandomValues), which provides cryptographically secure random numbers. This is the same technology used in security and encryption applications, making the results genuinely unpredictable and fair.

Do I need to create an account or sign up?

No. Roulety works instantly in your browser with no registration required. Your wheel entries and settings are stored locally on your device.

Does Roulety work on mobile devices?

Yes. Roulety is fully responsive and works on smartphones, tablets, and desktops. The layout automatically adjusts to fit your screen size.

Can I use Roulety for giveaways or contests?

Absolutely. Many content creators and event organizers use Roulety for giveaways, raffles, and prize drawings. The cryptographic randomness ensures fair and unbiased selection.

Where is my data stored?

All your data — wheel entries, settings, and spin history — is stored locally in your browser using localStorage. Nothing is sent to or stored on our servers.

Technology · 8 min read

Why True Randomness Is Hard: Inside Pseudo-Random Number Generators

What actually happens inside Math.random and similar functions, why their outputs are not truly random, and what cryptographic generators do differently.

Every modern programming language has a function that returns a random number. In JavaScript it is Math.random. In Python it is random.random. In C it is rand. They all work, in the sense that they return numbers that look random enough for most purposes. They are also, all of them, lying. There is nothing random inside. They are pseudo-random number generators — deterministic algorithms that produce sequences designed to look random while being entirely predictable to anyone who knows their inner state.

What a PRNG Actually Is

A pseudo-random number generator is a function that takes a state and returns a number plus a new state. Call it repeatedly, and you get a sequence of numbers that pass statistical tests for randomness — uniform distribution, no obvious autocorrelation, no apparent patterns. But because the generator is deterministic, the same starting state always produces the same sequence. This is, depending on your perspective, either a useful feature or a fatal flaw.

For simulation, gaming, and most general programming, determinism is a feature. A game that uses a seeded PRNG for procedural world generation can recreate the same world from the same seed, making bug reports reproducible and enabling features like shared seed worlds. A statistical simulation that uses a seeded PRNG can be re-run by other researchers to verify results.

For security applications — encryption keys, session tokens, password salts — determinism is catastrophic. If an attacker can guess the state of the generator, they can predict every output, present and future. This is the line that separates ordinary PRNGs from cryptographically secure pseudo-random number generators (CSPRNGs).

The Linear Congruential Generator

The simplest practical PRNG is the linear congruential generator (LCG). Its formula is just X_{n+1} = (a * X_n + c) mod m, where a, c, and m are carefully chosen constants. With good constants, an LCG can have a period — the number of iterations before it cycles back to its starting state — of billions. With bad constants, it can have catastrophic structural defects.

The most famous example of bad constants was IBM's RANDU generator, used widely in the 1960s scientific computing world. RANDU's choice of a = 65539 and m = 2^31 caused its outputs to fall on just 15 hyperplanes when plotted in three dimensions. Years of simulation results, published in respected journals, were quietly compromised before researchers noticed.

The Mersenne Twister

The Mersenne Twister, published in 1997, replaced LCGs as the workhorse PRNG for most languages. Its period — 2^19937 - 1, an inconceivably large number — guarantees that you will never see a repeated cycle in any realistic program. It passes virtually every standard statistical test for randomness, runs quickly on modern hardware, and is the default Math.random implementation in many JavaScript engines.

It is also, for cryptographic purposes, broken. Given any 624 consecutive 32-bit outputs from a Mersenne Twister, an attacker can mathematically invert the algorithm and recover the internal state, then predict every subsequent output. For password generation, session tokens, or cryptographic nonces, the Mersenne Twister cannot be used.

What Makes a Generator Cryptographically Secure

A CSPRNG must satisfy two properties that ordinary PRNGs do not. First, the next-bit test: given a sequence of past outputs, no polynomial-time algorithm should be able to predict the next bit with probability significantly better than 50%. Second, state compromise resistance: even if an attacker recovers the internal state at one point in time, they should not be able to reconstruct previous outputs.

These properties are achieved by building the generator on top of cryptographic primitives — typically a stream cipher or a hash function. The modern Linux kernel uses a generator based on ChaCha20, the same stream cipher used in TLS 1.3. Apple's CoreCrypto uses an AES-based design. The Web Crypto API's getRandomValues delegates to the operating system's CSPRNG, which is one of the above on any modern platform.

The Entropy Problem

Even a perfect CSPRNG needs a starting state — a seed — that the attacker cannot guess. If the seed is predictable, the entire sequence is predictable, no matter how well-designed the algorithm. This is where entropy collection comes in: the operating system continuously gathers unpredictable inputs from hardware sources (keystroke timings, mouse jitter, disk I/O, network packet timing, thermal noise on supported CPUs) and mixes them into an entropy pool. The CSPRNG is reseeded from this pool, ensuring that an attacker who has not been watching every keystroke since boot cannot reconstruct the seed.

Failures of entropy collection have caused real security disasters. In 2008, a bug in the Debian OpenSSL package reduced the entropy of seed generation to just 32,768 possible values. Cryptographic keys generated on affected systems could be brute-forced in seconds. Years of accumulated SSH keys, SSL certificates, and other secrets had to be regenerated.

Practical Implications

For everyday programming, Math.random is fine. For games, simulations, and unimportant random selection, even a basic LCG would work. But the moment your random number is used for something that needs to be unpredictable to an adversary — picking a winner in a high-stakes giveaway, generating a session token, or selecting where a spinner wheel will land in front of a live audience — you should be using a CSPRNG, accessed in JavaScript via crypto.getRandomValues. The performance cost is negligible. The integrity benefit is total.