Jacob Grycel,Robert J. Walls

DOI: https://doi.org/10.48550/arXiv.1903.09365

2019-11-12

Abstract:Quality randomness is fundamental to cryptographic operations but on embedded systems good sources are (seemingly) hard to find. Rather than use expensive custom hardware, our ERHARD-RNG Pseudo-Random Number Generator (PRNG) utilizes entropy sources that are already common in a range of low-cost embedded platforms. We empirically evaluate the entropy provided by three sources---SRAM startup state, oscillator jitter, and device temperature---and integrate those sources into a full Pseudo-Random Number Generator implementation based on Fortuna. Our system addresses a number of fundamental challenges affecting random number generation on embedded systems. For instance, we propose SRAM startup state as a means to efficiently generate the initial seed---even for systems that do not have writeable storage. Further, the system's use of oscillator jitter allows for the continuous collection of entropy-generating events---even for systems that do not have the user-generated events that are commonly used in general-purpose systems for entropy, e.g., key presses or network events.

Cryptography and Security

Luca Baldanzi,Luca Crocetti,Francesco Falaschi,Matteo Bertolucci,Jacopo Belli,Luca Fanucci,Sergio Saponara

DOI: https://doi.org/10.3390/s20071869

2020-03-27

Abstract:In the context of growing the adoption of advanced sensors and systems for active vehicle safety and driver assistance, an increasingly important issue is the security of the information exchanged between the different sub-systems of the vehicle. Random number generation is crucial in modern encryption and security applications as it is a critical task from the point of view of the robustness of the security chain. Random numbers are in fact used to generate the encryption keys to be used for ciphers. Consequently, any weakness in the key generation process can potentially leak information that can be used to breach even the strongest cipher. This paper presents the architecture of a high performance Random Number Generator (RNG) IP-core, in particular a Cryptographically Secure Pseudo-Random Number Generator (CSPRNG) IP-core, a digital hardware accelerator for random numbers generation which can be employed for cryptographically secure applications. The specifications used to develop the proposed project were derived from dedicated literature and standards. Subsequently, specific architecture optimizations were studied to achieve better timing performance and very high throughput values. The IP-core has been validated thanks to the official NIST Statistical Test Suite, in order to evaluate the degree of randomness of the numbers generated in output. Finally the CSPRNG IP-core has been characterized on relevant Field Programmable Gate Array (FPGA) and ASIC standard-cell technologies.

Luca Crocetti,Stefano Di Matteo,Pietro Nannipieri,Luca Fanucci,Sergio Saponara

DOI: https://doi.org/10.3390/e24020139

2022-01-18

Abstract:In the cybersecurity field, the generation of random numbers is extremely important because they are employed in different applications such as the generation/derivation of cryptographic keys, nonces, and initialization vectors. The more unpredictable the random sequence, the higher its quality and the lower the probability of recovering the value of those random numbers for an adversary. Cryptographically Secure Pseudo-Random Number Generators (CSPRNGs) are random number generators (RNGs) with specific properties and whose output sequence has such a degree of randomness that it cannot be distinguished from an ideal random sequence. In this work, we designed an all-digital RNG, which includes a Deterministic Random Bit Generator (DRBG) that meets the security requirements for cryptographic applications as CSPRNG, plus an entropy source that showed high portability and a high level of entropy. The proposed design has been intensively tested against both NIST and BSI suites to assess its entropy and randomness, and it is ready to be integrated into the European Processor Initiative (EPI) chip.

Jan Wassenberg,Robert Obryk,Jyrki Alakuijala,Emmanuel Mogenet

DOI: https://doi.org/10.48550/arXiv.1810.02227

2018-10-04

Abstract:Algorithms that rely on a pseudorandom number generator often lose their performance guarantees when adversaries can predict the behavior of the generator. To protect non-cryptographic applications against such attacks, we propose 'strong' pseudorandom generators characterized by two properties: computationally indistinguishable from random and backtracking-resistant. Some existing cryptographically secure generators also meet these criteria, but they are too slow to be accepted for general-purpose use. We introduce a new open-sourced generator called 'Randen' and show that it is 'strong' in addition to outperforming Mersenne Twister, PCG, ChaCha8, ISAAC and Philox in real-world benchmarks. This is made possible by hardware acceleration. Randen is an instantiation of Reverie, a recently published robust sponge-like random generator, with a new permutation built from an improved generalized Feistel structure with 16 branches. We provide new bounds on active s-boxes for up to 24 rounds of this construction, made possible by a memory-efficient search algorithm. Replacing existing generators with Randen can protect randomized algorithms such as reservoir sampling from attack. The permutation may also be useful for wide-block ciphers and hashing functions.

Cryptography and Security,Data Structures and Algorithms

James Brown,Jian Fu Zhang,Bo Zhou,Mehzabeen Mehedi,Pedro Freitas,John Marsland,Zhigang Ji

DOI: https://doi.org/10.1038/s41598-020-74351-y

IF: 4.6

2020-01-01

Scientific Reports

Abstract:The future security of Internet of Things is a key concern in the cyber-security field. One of the key issues is the ability to generate random numbers with strict power and area constrains. “True Random Number Generators” have been presented as a potential solution to this problem but improvements in output bit rate, power consumption, and design complexity must be made. In this work we present a novel and experimentally verified “True Random Number Generator” that uses exclusively conventional CMOS technology as well as offering key improvements over previous designs in complexity, output bitrate, and power consumption. It uses the inherent randomness of telegraph noise in the channel current of a single CMOS transistor as an entropy source. For the first time multi-level and abnormal telegraph noise can be utilised, which greatly reduces device selectivity and offers much greater bitrates. The design is verified using a breadboard and FPGA proof of concept circuit and passes all 15 of the NIST randomness tests without any need for post-processing of the generated bitstream. The design also shows resilience against machine learning attacks performed by the LSTM neural network.

Ram Soorat,Madhuri K.,Ashok Vudayagiri

DOI: https://doi.org/10.48550/arXiv.1510.01234

2015-10-06

Abstract:One of the key requirement of many schemes is that of random numbers. Sequence of random numbers are used at several stages of a standard cryptographic protocol. A simple example is of a Vernam cipher, where a string of random numbers is added to massage string to generate the encrypted code. It is represented as $C=M \oplus K $ where $M$ is the message, $K$ is the key and $C$ is the ciphertext. It has been mathematically shown that this simple scheme is unbreakable is key K as long as M and is used only once. For a good cryptosystem, the security of the cryptosystem is not be based on keeping the algorithm secret but solely on keeping the key secret. The quality and unpredictability of secret data is critical to securing communication by modern cryptographic techniques. Generation of such data for cryptographic purposes typically requires an unpredictable physical source of random data. In this manuscript, we present studies of three different methods for producing random number. We have tested them by studying its frequency, correlation as well as using the test suit from NIST.

Computational Physics,Cryptography and Security,Instrumentation and Detectors

Zhi Guan,Long Zhang,Zhong Chen,Xianghao Nan

DOI: https://doi.org/10.1007/978-3-540-88625-9_18

2008-01-01

Abstract:With the increasing concerns over the security and privacy of Web based applications, many solutions based on strong cryptography have been proposed to protect client side Web applications against attacks such as phishing, pharming and even server side attacks. While strong cryptography is used, one critical building block in cryptosystem, the random number generator, is often neglected. Considering this situation, in this paper we design and implement a pseudo-random number generator only rely on ubiquitous Web browser abilities - JavaScript, HTML and AJAX. We also provide a mechanism called Pseudo-cookiefor JavaScript programs to access operating system services for retrieving random or entropy values without changing Web browser security policies. The security model, analysis and performance evaluation demonstrate that our method is secure and efficient.

Peter Kietzmann,Thomas C. Schmidt,Matthias Wählisch

DOI: https://doi.org/10.1145/3453159

2021-07-15

Abstract:Random numbers are an essential input to many functions on the Internet of Things (IoT). Common use cases of randomness range from low-level packet transmission to advanced algorithms of artificial intelligence as well as security and trust, which heavily rely on unpredictable random sources. In the constrained IoT, though, unpredictable random sources are a challenging desire due to limited resources, deterministic real-time operations, and frequent lack of a user interface. In this paper, we revisit the generation of randomness from the perspective of an IoT operating system (OS) that needs to support general purpose or crypto-secure random numbers. We analyse the potential attack surface, derive common requirements, and discuss the potentials and shortcomings of current IoT OSs. A systematic evaluation of current IoT hardware components and popular software generators based on well-established test suits and on experiments for measuring performance give rise to a set of clear recommendations on how to build such a random subsystem and which generators to use.

Cryptography and Security

Unsub Zia,Mark McCartney,Bryan Scotney,Jorge Martinez,Ali Sajjad

DOI: https://doi.org/10.1002/spy2.304

2023-01-01

Security and Privacy

Abstract:The strength of cryptographic keys rely on the random number generators (RNGs) to produce random seed values. Unfortunately there are not many RNGs options suitable for Internet of Things (IoTs) scenario, due to limited processing resources and bulk quantity of IoT data that needs to be secured. In this article, we studied sawtooth map which is a chaotic map. However, when implemented on a computer, the sawtooth map results on a non-chaotic orbit due to the finite precision of computation. This can be avoided if we use the sawtooth map as the local map in a coupled map lattice (CML) system. We explore such coupled map systems for randomness through entropy and statistical analysis. Based on the results, we propose a lightweight hybrid pseudo random number generator (PRNG) based on sawtooth based CML system and SPONGENT hashing. The proposed PRNG is thoroughly tested against statistical attacks, entropy analysis, key space analysis and compared with existing state of the art solutions. The results provide evidence that the proposed PRNG produces random numbers that could produce sufficiently strong cryptographic keys for resource constrained IoT devices.

Tong Zhou,Mingyan Yu,YIzheng Ye

DOI: https://doi.org/10.1109/mwscas.2006.381785

2006-01-01

Abstract:This paper presents a high-speed truly random number generator based on a simple chaotic map of the Bernoulli shift, which is extended to keep robustness in practical implementation. The design is realized by switched- current techniques that can make it be fully integrated in embedded cryptosystems. And a pipelined architecture post- processed by a SHA-1 hardware module is proposed to improve the throughput and the randomness statistical properties. The whole design is implemented in UMC 0.18 mum CMOS mixed signal process, and the statistical properties are investigated by post-simulations. The power consumption is low and the truly random output bit rate can get to 266 Mbit/s.

Lang Li,Minglu Cai,Tao Wang,Zicong Tan,Peng Huang,Kan Wu,Guihua Zeng

DOI: https://doi.org/10.1364/prj.506960

IF: 7.6

2024-01-01

Photonics Research

Abstract:Quantum resources offer intrinsic randomness that is valuable for applications such as cryptography, scientific simulation, and computing. Silicon-based photonics chips present an excellent platform for the cost-effective deployment of next-generation quantum systems on a large scale, even at room temperature. Nevertheless, the potential susceptibility of these chips to hacker control poses a challenge in ensuring security for on-chip quantum random number generation, which is crucial for enabling extensive utilization of quantum resources. Here, we introduce and implement an on-chip source-device-independent quantum random number generator (SDI-QRNG). The randomness of this generator is achieved through distortion-free on-chip detection of quantum resources, effectively eliminating classical noise interference. The security of the system is ensured by employing on-chip criteria for estimating security entropy in a practical chip environment. By incorporating a photoelectric package, the SDI-QRNG chip achieves a secure bit rate of 146.2 Mbps and a bare chip rate of 248.47 Gbps, with all extracted secure bits successfully passing the randomness test. Our experimental demonstration of this chip-level SDI-QRNG shows significant advantages in practical applications, paving the way for the widespread and cost-effective implementation of room-temperature secure QRNG, which marks a milestone in the field of QRNG chips.

Fatemeh Tehranipoor

DOI: https://doi.org/10.48550/arXiv.1806.05332

2018-06-14

Cryptography and Security

Abstract:In recent years, due to the trend in globalization, system integrators have had to deal with integrated circuit (IC)/intellectual property (IP) counterfeiting more than ever. These counterfeit hardware issues counterfeit hardware that have driven the need for more secure chip authentication. High entropy random numbers from physical sources are a critical component in authentication and encryption processes within secure systems [6]. Secure encryption is dependent on sources of truly random numbers for generating keys, and there is a need for an on chip random number generator to achieve adequate security. Furthermore, the Internet of Things (IoT) adopts a large number of these hardware-based security and prevention solutions in order to securely exchange data in resource efficient manner. In this work, we have developed several methodologies of hardware-based random functions in order to address the issues and enhance the security and trust of ICs: a novel DRAM-based intrinsic Physical Unclonable Function (PUF) [13] for system level security and authentication along with analysis of the impact of various environmental conditions, particularly silicon aging; a DRAM remanence based True Random Number Generation (TRNG) to produce random sequences with a very low overhead; a DRAM TRNG model using its startup value behavior for creating random bit streams; an efficient power supply noise based TRNG model for generating an infinite number of random bits which has been evaluated as a cost effective technique; architectures and hardware security solutions for the Internet of Things (IoT) environment. Since IoT devices are heavily resource constrained, our proposed designs can alleviate the concerns of establishing trustworthy and security in an efficient and low-cost manner.

Zhengeng Zhao,Xin Hua,Yongqiang Du,Chenyu Xu,Feng Xie,Zhang Zhenrong,Xi Xiao,Kejin Wei

DOI: https://doi.org/10.1364/oe.530045

IF: 3.8

2024-10-12

Optics Express

Abstract:Zhengeng Zhao, Xin Hua, Yongqiang Du, Chenyu Xu, Feng Xie, Zhenrong Zhang, Xi Xiao, Kejin Wei Random numbers are essential resources in science and engineering, with indispensable applications in simulation, cybersecurity, and ... [Opt. Express 32, 38793-38804 (2024)]

optics

Michał Melosik,Mariusz Galan,Mariusz Naumowicz,Piotr Tylczyński,Scott Koziol

DOI: https://doi.org/10.3390/e25070976

2023-06-25

Abstract:This paper presents a prototype wearable Cryptographically Secure PseudoRandom Bit Generator CSPRBG (wearable CSPRBG). A vest prototype has been fabricated to which an evaluation board with a ZYBO (ZYnq BOard) Zynq Z-7010 has been mounted using tailoring technology. In this system, a seed generator and block cryptographic algorithms responsible for the generation of pseudo-random values were implemented. A microphone and an accelerometer recorded sound and acceleration during the use of the prototype vest, and these recordings were passed to the seed generator and used as entropy sources. Hardware implementations were made for several selected Block Cryptographic algorithms such as Advanced Encryption Standard (AES), Twofish and 3DES. The random binary values generated by the wearable CSPRBG were analyzed by National Institute of Standards and Technology (NIST) statistical tests as well as ENT tests to evaluate their randomness, depending on the configuration of the entropy sources used. The idea of possible development of the wearable CSPRBG as a System on Chip (SoC) solution is also presented.

Xing Lin,Shuang Wang,Zhen-Qiang Yin,Guan-Jie Fan-Yuan,Rong Wang,Wei Chen,De-Yong He,Zheng Zhou,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.1038/s41534-020-00331-9

IF: 10.758

2020-12-01

npj Quantum Information

Abstract:Abstract A quantum random number generator (QRNG) as a genuine source of randomness is essential in many applications, such as number simulation and cryptography. Recently, a source-independent quantum random number generator (SI-QRNG), which can generate secure random numbers with untrusted sources, has been realized. However, the measurement loopholes of the trusted but imperfect devices used in SI-QRNGs have not yet been fully explored, which will cause security problems, especially in high-speed systems. Here, we point out and evaluate the security loopholes of practical imperfect measurement devices in SI-QRNGs. We also provide corresponding countermeasures to prevent these information leakages by recalculating the conditional minimum entropy and adding a monitor. Furthermore, by taking into account the finite-size effect, we show that the influence of the afterpulse can exceed that of the finite-size effect with the large number of sampled rounds. Our protocol is simple and effective, and it promotes the security of SI-QRNG in practice as well as the compatibility with high-speed measurement devices, thus paving the way for constructing ultrafast and security-certified commercial SI-QRNG systems.

physics, condensed matter, applied, atomic, molecular & chemical,quantum science & technology

Marco Avesani,Hamid Tebyanian,Paolo Villoresi,Giuseppe Vallone

DOI: https://doi.org/10.1103/PhysRevApplied.15.034034

2020-04-18

Abstract:Randomness is a fundamental feature of quantum mechanics, which is an invaluable resource for both classical and quantum technologies. Practical quantum random number generators (QRNG) usually need to trust their devices, but their security can be jeopardized in case of imperfections or malicious external actions. In this work, we present a robust implementation of a Semi-Device-Independent QRNG that guarantees both security and fast generation rates. The system works in a prepare and measure scenario where measurement and source are untrusted, but a bound on the energy of the prepared states is assumed. Our implementation exploits heterodyne detection, which offers increased generation rate and improved long-term stability compared to alternative measurement strategies. In particular, due to the tomographic properties of heterodyne measurement, we can compensate for fast phase fluctuations via post-processing, avoiding complex active phase stabilization systems. As a result, our scheme combines high security and speed with a simple setup featuring only commercial-off-the-shelf components, making it an attractive solution in many practical scenarios.

Quantum Physics

Yu-Xuan Liu,Ke-Xin Huang,Yu-Ming Bai,Zhe Yang,Jun-Lin Li

DOI: https://doi.org/10.1088/0256-307x/40/7/070303

2023-01-01

Chinese Physics Letters

Abstract:Random numbers are one of the key foundations of cryptography. This work implements a discrete quantum random number generator（QRNG） based on the tunneling effect of electrons in an avalanche photo diode.Without any post-processing and conditioning, this QRNG can output raw sequences at a rate of 100 Mbps. Remarkably, the statistical min-entropy of the 8,000,000 bits sequence reaches 0.9944 bits/bit, and the min-entropy validated by NIST SP 800-90B reaches 0.9872 bits/bit. This metric is currently the highest value we have investigated for QRNG raw sequences. Moreover, this QRNG can continuously and stably output raw sequences with high randomness over extended periods. The system produced a continuous output of 1,174 Gbits raw sequence for a duration of 11,744 s, with every 8 Mbits forming a unit to obtain a statistical min-entropy distribution with an average value of 0.9892 bits/bit. The statistical min-entropy of all data（1,174 Gbits） achieves the value of0.9951 bits/bit. This QRNG can produce high-quality raw sequences with good randomness and stability. It has the potential to meet the high demand in cryptography for random numbers with high quality.

Mario Stipčević,Ivan Michel Antolović,Claudio Bruschini,Edoardo Charbon

DOI: https://doi.org/10.48550/arXiv.2102.12204

2021-02-24

Abstract:For globally connected devices like smart phones, personal computers and Internet-of-things devices, the ability to generate random numbers is essential for execution of cryptographic protocols responsible for information security. Generally, a random number generator should be small, robust, utilize as few hardware and energy resources as possible, yet provide excellent randomness at a high enough speed (bitrate) for a given purpose. In this work we present a quantum random number generator (QRNG) which makes use of a photoelectric effect in single-photon avalanche diodes (SPADs) as a source of randomness and is scalable to any desired bitrate. We use the random flip-flop method in which random bits are obtained by periodic sampling of a randomly toggling flip-flop. For the first time we investigate this method in detail and find that, out of two main imperfections, bias is due only to hardware imperfections while autocorrelation predominantly resides with the method itself. SPADs are integrated on a silicon chip together with passive quenching and digital pulse-shaping circuitry, using a standard 180 nm CMOS process. A separate FPGA chip derives random numbers from the detection signals. The basic QRNG cell, made of only two SPADs and a few logic circuits, can generate up to 20 Mbit/s that pass NIST statistical tests without any further postprocessing. This technology allows integration of a QRNG on a single silicon chip using readily available industrial processes.

Quantum Physics

Xing Lin,Rong Wang,Shuang Wang,Zhen-Qiang Yin,Wei Chen,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.1103/physrevlett.129.050506

IF: 8.6

2022-01-01

Physical Review Letters

Abstract:Generating random numbers plays an important role in many scientific applications. Compared to pseudorandom number generators, a quantum device is capable of generating true random numbers by the laws of quantum mechanics. However, information-theoretical secure random numbers are regularly based on a perfect device model, which may deviate from a real-world device. To close this gap, we propose a quantum random number generation protocol and experimentally demonstrate it. In our protocol, we make no assumptions about the source. Some reasonable assumptions on the trusted two-dimensional measurement are needed, but we do not require a detailed characterization. Even if considering the most general quantum attack and using the general sources, we achieve a randomness generation rate of over 1 Mbps with a universal composable security parameter of 10(-10).

Xiangye Wei,Liming Xiu,Yimao Cai

DOI: https://doi.org/10.1109/tifs.2023.3322602

IF: 7.231

2024-01-01

IEEE Transactions on Information Forensics and Security

Abstract:True random number generator (TRNG) is a crucial component in security. In typical TRNGs, entropy comes directly from device noises. In this work, an improved method of using frequency-mixing as means for enriching entropy is implemented. A group of electromagnetic waves are mixed to create an irregular waveform that is then sampled to generate a random bitstream. Some part of the bitstream is fed back to the system for influencing the future frequencies of the sourcing waves, making it a chaotic system. The circuit-level support for this TRNG is the TAF-DPS (Time-Average-Frequency Direct Period Synthesis) technology. It can be digitally implemented, making the TRNG a portable IP. The merits of this TRNG include no need of special device, no post-processing, free of bias, programmable throughput, and hard-to-recognize spectrum. Those features make the TRNG suitable for a large array of applications, particularly for security in cyberspace. This TRNG is validated by a silicon chip on a 180 nm process, also on a FPGA.