Abstract
The issue of random number generation is crucial for the implementation of cryptographic systems. Random numbers are often used in key generation processes, authentication protocols, zeroknowledge protocols, padding, in many digital signature and encryption schemes, and even in some side channel attack countermeasures. For these applications, security depends to a great extent on the quality of the source of randomness and on the way this source is exploited. The quality of the generated numbers is checked by statistical tests. In addition to the good statistical properties of the obtained numbers, the output of the generator used in cryptography must be unpredictable. Besides quality and unpredictability requirements, the generator must be robust against aging effects and intentional or unintentional environmental variations, such as temperature, power supply, electromagnetic emanations, etc. In this paper, we discuss practical aspects of a true random number generator design. Special attention is given to the analysis of security requirements and on the way how this requirements can be met in practice.
Keywords
- Random number generation
- cryptographic hardware
- data security
- statistical tests
- digital design
This is a preview of subscription content, access via your institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Badrignans, B., Danger, J.L., Fischer, V., Gogniat, G., Torres, L.: Security Trends for FPGAs, 1st edn., ch. 5, pp. 101–135. Springer (2011)
Baudet, M., Lubicz, D., Micolod, J., Tassiaux, A.: On the security of oscillator-based random number generators. Journal of Cryptology 24, 1–28 (2010)
Bernard, F., Fischer, V., Valtchanov, B.: Mathematical Model of Physical RNGs Based on Coherent Sampling. Tatra Mt. Math. Publ. 45, 1–14 (2010)
Bochard, N., Bernard, F., Fischer, V., Valtchanov, B.: True-Randomness and Pseudorandomness in Ring Oscillator-Based True Random Number Generators. International Journal of Reconfigurable Computing, Article ID 879281, 13 (2010)
Bochard, N., Fischer, V.: A set of evaluation boards aimed at TRNG design evaluation and testing. Tech. rep., Laboratoire Hubert Curien, Saint-Etienne, France (March 2012), http://www.cryptarchi.org
Bucci, M., Luzzi, R.: Design of Testable Random Bit Generators. In: Rao, J.R., Sunar, B. (eds.) CHES 2005. LNCS, vol. 3659, pp. 147–156. Springer, Heidelberg (2005)
Danger, J.L., Guilley, S., Hoogvorst, P.: High Speed True Random Number Generator based on Open Loop Structures in FPGAs. Elsevier Microelectronics Journal 40(11), 1650–1656 (2009)
Dichtl, M., Golić, J.D.: High-Speed True Random Number Generation with Logic Gates Only. In: Paillier, P., Verbauwhede, I. (eds.) CHES 2007. LNCS, vol. 4727, pp. 45–62. Springer, Heidelberg (2007)
Fips, P. 140-1: Security Requirements for Cryptographic Modules. National Institute of Standards and Technology 11 (1994)
Fischer, V., Drutarovsky, M.: True Random Number Generator Embedded in Reconfigurable Hardware. In: Kaliski Jr., B.S., Koç, Ç.K., Paar, C. (eds.) CHES 2002. LNCS, vol. 2523, pp. 415–430. Springer, Heidelberg (2003)
Güneysu, T.: True Random Number Generation in Block Memories of Reconfigurable Devices. In: Proc. Int. Conf. on Field-Programmable Technology – FPT 2010, pp. 200–207. IEEE (2010)
Gyorfi, T., Cret, O., Suciu, A.: High Performance True Random Number Generator Based on FPGA Block RAMs. In: Proc. Int. Symposium on Parallel and Distributed Processing, pp. 1–8. IEEE (2009)
Hajimiri, A., Lee, T.: A general theory of phase noise in electrical oscillators. IEEE Journal of Solid-State Circuits 33(2), 179–194 (1998)
Holleman, J., Otis, B., Bridges, S., Mitros, A., Diorio, C.: A 2.92 muW Hardware Random Number Generator. In: IEEE Proceedings of ESSCIRC (2006)
Killmann, W., Schindler, W.: AIS 31: Functionality classes and evaluation methodology for true (physical) random number generators, version 3.1. Bundesamt fur Sicherheit in der Informationstechnik (BSI), Bonn (2001), http://www.bsi.bund.de/zertifiz/zert/interpr/ais31e.pdf
Killmann, W., Schindler, W.: A proposal for: Functionality classes for random number generators, version 2.0. Tech. rep., Bundesamt fur Sicherheit in der Informationstechnik (BSI), Bonn (September 2011), https://www.bsi.bund.de/EN/Home/home_node.html
Kohlbrenner, P., Gaj, K.: An Embedded True Random Number Generator for FPGAs. In: Proceedings of the 2004 ACM/SIGDA 12th International Symposium on Field Programmable Gate Arrays, pp. 71–78 (2004)
Majzoobi, M., Koushanfar, F., Devadas, S.: FPGA-Based True Random Number Generation Using Circuit Metastability with Adaptive Feedback Control. In: Preneel, B., Takagi, T. (eds.) CHES 2011. LNCS, vol. 6917, pp. 17–32. Springer, Heidelberg (2011)
Marsaglia, G.: DIEHARD: Battery of Tests of Randomness (1996), http://stat.fsu.edu/pub/diehard/
Rukhin, A., Soto, J., Nechvatal, J., Smid, J., Barker, E., Leigh, S., Levenson, M., Vangel, M., Banks, D., Heckert, A., Dray, J., Vo, S.: A statistical test suite for random and pseudorandom number generators for cryptographic applications, nist special publication 800-22 (2001), http://csrc.nist.gov/ , http://csrc.ncsl.nist.gov/publications/nistbul/html-archive/dec-00.html
Santoro, R., Sentieys, O., Roy, S.: On-line monitoring of random number generators for embedded security. In: Proceedings of IEEE International Symposium on Circuits and Systems, ISCAS 2009 (2009)
Simka, M., Drutarovsky, M., Fischer, V., Fayolle, J.: Model of a True Random Number Generator Aimed at Cryptographic Applications. In: Proceedings of 2006 IEEE International Symposium on Circuits and Systems, ISCAS 2006, p. 4 (2006)
Sunar, B., Martin, W., Stinson, D.: A Provably Secure True Random Number Generator with Built-In Tolerance to Active Attacks. IEEE Transactions on Computers, 109–119 (2007)
Tkacik, T.: A Hardware Random Number Generator. In: Kaliski Jr., B.S., Koç, Ç.K., Paar, C. (eds.) CHES 2002. LNCS, vol. 2523, pp. 450–453. Springer, Heidelberg (2003)
Valtchanov, B., Aubert, A., Bernard, F., Fischer, V.: Characterization of randomness sources in ring oscillator-based true random number generators in FPGAs. In: 13th IEEE Workshop on Design and Diagnostics of Electronic Circuits and Systems, DDECS 2010, pp. 1–6 (2010)
Valtchanov, B., Fischer, V., Aubert, A.: Enhanced TRNG Based on the Coherent Sampling. In: 2009 International Conference on Signals, Circuits and Systems (2009)
Varchola, M., Drutarovsky, M.: Embedded Platform for Automatic Testing and Optimizing of FPGA Based Cryptographic True Random Number Generators. Radioengineering 18(4), 631–638 (2009)
Varchola, M., Drutarovsky, M.: New High Entropy Element for FPGA Based True Random Number Generators. In: Mangard, S., Standaert, F.-X. (eds.) CHES 2010. LNCS, vol. 6225, pp. 351–365. Springer, Heidelberg (2010)
Veljkovic, F., Rozic, V., Verbauwhede, I.: Low-Cost Implementations of On-the-Fly Tests for Random Number Generators. In: Design, Automation, and Test in Europe – DATE 2012. EDAA (2012)
Wold, K., Tan, C.H.: Analysis and Enhancement of Random Number Generator in FPGA Based on Oscillator Rings. In: 2008 International Conference on Reconfigurable Computing and FPGAs, pp. 385–390 (2008)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Fischer, V. (2012). A Closer Look at Security in Random Number Generators Design. In: Schindler, W., Huss, S.A. (eds) Constructive Side-Channel Analysis and Secure Design. COSADE 2012. Lecture Notes in Computer Science, vol 7275. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-29912-4_13
Download citation
DOI: https://doi.org/10.1007/978-3-642-29912-4_13
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-29911-7
Online ISBN: 978-3-642-29912-4
eBook Packages: Computer ScienceComputer Science (R0)
