es trng
play

ES-TRNG A High- throughput , Low-area T rue R andom N umber G - PowerPoint PPT Presentation

Dec 13, 2023 •346 likes •522 views

ES-TRNG A High- throughput , Low-area T rue R andom N umber G enerator based on E dge S ampling Bohan Yang , Vladimir Roi , Milo Gruji Nele Mentens and Ingrid Verbauwhede COSIC, KU Leuven Generic TRNG Architecture Timing jitter

  1. ES-TRNG A High- throughput , Low-area T rue R andom N umber G enerator based on E dge S ampling Bohan Yang , Vladimir Rožić , Miloš Grujić Nele Mentens and Ingrid Verbauwhede COSIC, KU Leuven

  2. Generic TRNG Architecture • Timing jitter based TRNG • Compact implementation ES-TRNG • Reasonable throughput • Security analysis using a stochastic model Digital Noise Source Internal Raw Entropy Post Numbers Numbers Digitization Applications Source Processing Total Failure Online Tests Tests 12-Sep-18 COSIC, KU Leuven 1

  3. Stochastic model oriented security analysis I nitialization For Cryptographic Applications: V ectors ? The SECURITY of a TRNG depends on its unpredictability. which AIS-31 cannot be can be NIST800-22 measured by estimated by NIST800-90B ? DIEHARD statistical tests stochastic model FIPS 140-1 ? 12-Sep-18 COSIC, KU Leuven 2

  4. Timing jitter based TRNG Noise Free Noise Free Noise A random bit is generated only when measuring the position of a edge. 0 D Q 1 clk Timing Jitter accumulation is slow Low throughput Elementary TRNG Solution: increasing the sampling resolution! 12-Sep-18 COSIC, KU Leuven 3

  5. How to increase the sampling resolution Sampling at a higher frequency ? D Q D Q clk clk Highest sampling frequency is limited by technology, platform, system, power, energy…. 12-Sep-18 COSIC, KU Leuven 4

  6. How to increase the sampling resolution Using high resolution TDC (Time-to-Digital Converter) ES-TRNG DC-TRNG 1100 Resolution: ~ 17 ps (@~60 GHz) 0111 1000 LUT LUT Period: ~ 2.2 ns 2200 𝑞𝑡 ÷ 2 ÷ 17 𝑞𝑡 ÷ 4 ≈ 17 20 V. Rozic, B. Yang, W. Dehaene, and I. Verbauwhede, "Highly Efficient Entropy Extraction for True Random Number Generators on FPGAs," In DAC 2015 12-Sep-18 COSIC, KU Leuven 5

  7. A closer look at ES-TRNG architecture 12-Sep-18 COSIC, KU Leuven 6

  8. Technique 1: variable-precision phase encoding 1 1 1 Stages Raw Valid [2:0] bit 0 1 2 110,001 1 1 𝑢 𝑔,1 𝑢 𝑔,2 100,011 1 0 𝑢 𝑠,1 𝑢 𝑠,2 111,000 0 N 101,010 0 n/a 12-Sep-18 COSIC, KU Leuven 7

  9. Technique 1: variable-precision phase encoding Elementary TRNG 𝑢 𝑔,1 𝑢 𝑔,2 𝑢 𝑠,1 𝑢 𝑠,2 1 0 12-Sep-18 COSIC, KU Leuven 8

  10. Technique 2: repetitive sampling Dependency between each samples 12-Sep-18 COSIC, KU Leuven 9

  11. ES-TRNG: platform parameters RO 2 2.740 ns RO 1 2.172 ns 𝑢 𝑔,1 𝑢 𝑔,2 40.90 ps 35.93 ps 𝑢 𝑔,1 𝑢 𝑔,2 𝑢 𝑠,2 𝑢 𝑠,1 24.12 ps 22.25 ps 𝑢 𝑠,1 𝑢 𝑠,2 D 2 𝜏 𝑛 2.9 fs 0.43 𝑢 𝑛 12-Sep-18 COSIC, KU Leuven 10

  12. ES-TRNG: design parameters Entropy claim! 12-Sep-18 COSIC, KU Leuven 11

  13. ES-TRNG: design parameters Entropy claim! 12-Sep-18 COSIC, KU Leuven 12

  14. Implementation of ES-TRNG on Xilinx FPGA 5 DFFs 1 CARRY4 6 LUTs + 4 LUTs 12-Sep-18 COSIC, KU Leuven 13

  15. Conclusion Compact Hardware: 10 LUTs + 5 FFs @ Xilinx Spartan-6 ES-TRNG or 10 LUTs + 6 FFs @ Intel Cyclone-V Relative High Throughput: 1.15 Mbps @ Xilinx Spartan-6 or 1.07 Mbps @ Intel Cyclone-V Security analysis supported by stochastic model DC-TRNG & ES-TRNG resources (in progress): https://github.com/ybhphoenix/DC-ES-TRNG 12-Sep-18 COSIC, KU Leuven 14

  16. Q&A 12-Sep-18 COSIC, KU Leuven 15

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Physical Approach for Stochastic Modeling of TERO-based TRNG Patrick Haddad 1 , 2 , Viktor F

A Physical Approach for Stochastic Modeling of TERO-based TRNG Patrick Haddad 1 , 2 , Viktor F

TERO P-TRNG TERO analysis P-TRNG model Conclusions A Physical Approach for Stochastic Modeling of TERO-based TRNG Patrick Haddad 1 , 2 , Viktor F ISCHER 1 , Florent B ERNARD 1 , and Jean N ICOLAI 2 1: Jean Monnet University Saint-Etienne,

369 views • 18 slides
ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn

ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn

ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn Java Basic 1 Selections When you compute area, if you enter a negative value: the program prints an invalid result. you dont want

942 views • 76 slides
A Survey of AIS-20/31 Compliant TRNG Cores Suitable for FPGA Devices Oto P E TURA , Ugo M

A Survey of AIS-20/31 Compliant TRNG Cores Suitable for FPGA Devices Oto P E TURA , Ugo M

Goals Methodology Implementation results Conclusions A Survey of AIS-20/31 Compliant TRNG Cores Suitable for FPGA Devices Oto P E TURA , Ugo M UREDDU , Nathalie B OCHARD , Viktor F ISCHER , Lilian B OSSUET Univ Lyon, UJM-Saint-Etienne, CNRS

440 views • 28 slides
WRAC'H 2019 Analysis of Mixed PUF-TRNG Circuit Based on SR-Latches in FD-SOI Technology Jean-Luc

WRAC'H 2019 Analysis of Mixed PUF-TRNG Circuit Based on SR-Latches in FD-SOI Technology Jean-Luc

WRAC'H 2019 Analysis of Mixed PUF-TRNG Circuit Based on SR-Latches in FD-SOI Technology Jean-Luc DANGER , Tlcom ParisTech In collaboration with: Risa Yashiro, Kazuo Sakiyama (UEC) Noriyuki Miura, Makoto Nagata (Kobe University) Yves Mathieu,

628 views • 26 slides
ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn

ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn

ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn 1 Assessment Attendance + exercise: 20% Midterm exam: 30%, closed-book, lab test Final exam: 50%, opened-book, lab test Java Basic 2

1.28k views • 85 slides
ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn

ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn

ThS. Trn Th Thanh Nga Khoa CNTT, Trng H Nng Lm TPHCM Email: ngattt@hcmuaf.edu.vn Java Basic - Arrays 1 Array Basics An array is used to store a collection of data An array as a collection of variables of the same type .

1.11k views • 52 slides
Random Number Generators for Cryptography Design and Evaluation Viktor F ISCHER Laboratoire

Random Number Generators for Cryptography Design and Evaluation Viktor F ISCHER Laboratoire

TRNG Design TRNG Classes Conclusions Random Number Generators for Cryptography Design and Evaluation Viktor F ISCHER Laboratoire Hubert Curien, UMR 5516 CNRS Jean Monnet University, Member of University of Lyon Saint-Etienne, France

675 views • 52 slides
TRNG - EVALUATION & CERTIFICATION WRACH 2019 | DUMAS Ccile | 15 avril 2019 OUTLINE

TRNG - EVALUATION & CERTIFICATION WRACH 2019 | DUMAS Ccile | 15 avril 2019 OUTLINE

TRNG - EVALUATION & CERTIFICATION WRACH 2019 | DUMAS Ccile | 15 avril 2019 OUTLINE Evaluation Lab Random Number Generators Evaluation of RNG Conclusion & Perspectives WRACH 2019 | Ccile Dumas | 15 avril

683 views • 43 slides
(New) Challenges in Random Number Generation for Cryptography Viktor F ISCHER Laboratoire Hubert

(New) Challenges in Random Number Generation for Cryptography Viktor F ISCHER Laboratoire Hubert

TRNG Design Challenges RNG security evaluation Conclusions (New) Challenges in Random Number Generation for Cryptography Viktor F ISCHER Laboratoire Hubert Curien, UMR 5516 CNRS Jean Monnet University, Member of University of Lyon

685 views • 44 slides
Serial and Parallel Random Number Generation Prof. Dr. Michael Mascagni Seminar f ur

Serial and Parallel Random Number Generation Prof. Dr. Michael Mascagni Seminar f ur

Serial and Parallel Random Number Generation Prof. Dr. Michael Mascagni Seminar f ur Angewandte Mathematik, ETH Z urich R aimistrasse 101, CH-8092 Z urich, Switzerland and Department of Computer Science & School of

672 views • 35 slides
ECEN 5022 Cryptography Pseudo Random Number Generators Peter Mathys University of Colorado

ECEN 5022 Cryptography Pseudo Random Number Generators Peter Mathys University of Colorado

Pseudo Random Number Generators ECEN 5022 Cryptography Pseudo Random Number Generators Peter Mathys University of Colorado Spring 2008 Peter Mathys ECEN 5022 Cryptography Pseudo Random Number Generators Random Number Generation Random

352 views • 14 slides
Generation of non-uniform random numbers General method Function ran f () Theorem.- Let x be a

Generation of non-uniform random numbers General method Function ran f () Theorem.- Let x be a

Generation of non-uniform random numbers General method Function ran f () Theorem.- Let x be a r.v. with probability distribution func- tion F x ( x ) u = F x ( x ) is a r.v. uniformly distributed in the interval (0 , 1) ( U (0 ,

287 views • 25 slides
Random Numbers, Files, and Onwards Random Numbers Computers cannot produce truly random numbers.

Random Numbers, Files, and Onwards Random Numbers Computers cannot produce truly random numbers.

Random Numbers, Files, and Onwards Random Numbers Computers cannot produce truly random numbers. We make do with pseudo-random numbers, which are good enough. The pseudo-random generation algorithm is given a seed value. The same seed will always

331 views • 12 slides
Randomness generation Daniel J. Bernstein, Tanja Lange May 16, 2014 RDRAND: Just use it! David

Randomness generation Daniel J. Bernstein, Tanja Lange May 16, 2014 RDRAND: Just use it! David

Randomness generation Daniel J. Bernstein, Tanja Lange May 16, 2014 RDRAND: Just use it! David Johnston, 2012 (emphasis added): Thats exactly why we put the new random number generator in our processors. To solve the chronic problem of

392 views • 25 slides
A Highly-Portable True Random Number Generator based on Coherent Sampling 2019 International

A Highly-Portable True Random Number Generator based on Coherent Sampling 2019 International

A Highly-Portable True Random Number Generator based on Coherent Sampling 2019 International Conference on Field-Programmable Logic and Applications Adriaan Peetermans, Vladimir Ro zi c and Ingrid Verbauwhede September 10, 2019 Random

370 views • 35 slides
MIPS Assembly (Random Numbers) 2 Lab Schedule Activities Assignments Due This Week Lab 10

MIPS Assembly (Random Numbers) 2 Lab Schedule Activities Assignments Due This Week Lab 10

Computer Systems and Networks ECPE 170 Jeff Shafer University of the Pacific MIPS Assembly (Random Numbers) 2 Lab Schedule Activities Assignments Due This Week Lab 10 Due by Apr 11 th 5:00am Lab work time MIPS

477 views • 5 slides
Random Numbers on GPUs W. B. Langdon Mathematical and Biological Sciences and Computing and

Random Numbers on GPUs W. B. Langdon Mathematical and Biological Sciences and Computing and

Random Numbers on GPUs W. B. Langdon Mathematical and Biological Sciences and Computing and Electronic Systems CIGPU 2008 Introduction Artificial Intelligence needs Randomisation Implementing randomisation is hard. GPU no native

618 views • 23 slides
Computational Expression Random Class, Math Class, Wrapper Classes Janyl Jumadinova 30

Computational Expression Random Class, Math Class, Wrapper Classes Janyl Jumadinova 30

Computational Expression Random Class, Math Class, Wrapper Classes Janyl Jumadinova 30 September, 2019 Janyl Jumadinova Computational Expression 30 September, 2019 1 / 8 Random Class The Random class is part of the java.util package It

415 views • 15 slides
Random number generation failures from Netscape to DUHK Nadia Heninger University of

Random number generation failures from Netscape to DUHK Nadia Heninger University of

Random number generation failures from Netscape to DUHK Nadia Heninger University of Pennsylvania June 18, 2018 A cartoon cryptographic communication protocol AES k ( m ) A cartoon cryptographic communication protocol g a g b AES k ( m ) k =

1.06k views • 70 slides
Simulation Simulation Modeling and Performance Analysis with Discrete-Event Simulation g y Dr.

Simulation Simulation Modeling and Performance Analysis with Discrete-Event Simulation g y Dr.

Computer Science, Informatik 4 Communication and Distributed Systems Simulation Simulation Modeling and Performance Analysis with Discrete-Event Simulation g y Dr. Mesut Gne Computer Science, Informatik 4 Communication and Distributed

744 views • 35 slides
Using Blaise for Implementing a Complex Sampling Algorithm By Linda Gowen and Ed Dolbow, Westat

Using Blaise for Implementing a Complex Sampling Algorithm By Linda Gowen and Ed Dolbow, Westat

Using Blaise for Implementing a Complex Sampling Algorithm By Linda Gowen and Ed Dolbow, Westat Inc. Introduction A new in-person household survey using Blaise as the tool to perform computer aided interviewing (CAI), required a complicated

422 views • 13 slides
C Programming for Engineers Arrays & Pointers ICEN 360 Spring 2017 Prof. Dola Saha 1

C Programming for Engineers Arrays & Pointers ICEN 360 Spring 2017 Prof. Dola Saha 1

C Programming for Engineers Arrays & Pointers ICEN 360 Spring 2017 Prof. Dola Saha 1 Classroom Assignment Matrix Addition/Subtraction two matrices should have same number of rows and columns. Addition Subtraction

478 views • 30 slides
Uniform Variate Generation Refs: Chapter 7 in Law, Pierre Lecuyer Tutorial, Winter Simulation

Uniform Variate Generation Refs: Chapter 7 in Law, Pierre Lecuyer Tutorial, Winter Simulation

Uniform Variate Generation Refs: Chapter 7 in Law, Pierre Lecuyer Tutorial, Winter Simulation Conference 2015 Peter J. Haas CS 590M: Simulation Spring Semester 2020 1 / 21 Pseudo-Random Numbers Overview Simple Congruential Generators

325 views • 21 slides
Security of Pseudo-Random Number Generators With Input Damien Vergnaud cole normale

Security of Pseudo-Random Number Generators With Input Damien Vergnaud cole normale

Security of Pseudo-Random Number Generators With Input Damien Vergnaud cole normale suprieure INRIA PSL wr0ng April, 30th 2017 (with Yevgeniy Dodis, David Pointcheval, Sylvain Ruhault & Daniel Wichs) Damien Vergnaud (ENS)

694 views • 57 slides

More recommend