r andom number generation software
play

R ANDOM NUMBER GENERATION ( SOFTWARE ) Two kind of software random - PowerPoint PPT Presentation

Sep 15, 2023 •22 likes •252 views

A C OMPARISON OF P SEUDORANDOM N UMBER G ENERATORS Riivo Talviste 3 rd Conference on Advanced Topics in Telecommunication Aug 14 15, 2009 I NTRODUCTION Cryptography in everyday life E-banking Estonian ID-card 2 I SSUES

  1. A C OMPARISON OF P SEUDORANDOM N UMBER G ENERATORS Riivo Talviste 3 rd Conference on Advanced Topics in Telecommunication Aug 14 – 15, 2009

  2. I NTRODUCTION  Cryptography in everyday life  E-banking  Estonian ID-card 2

  3. I SSUES  Security  Good algotithms  Weak random number generators (RNGs)  Performance  RNG has to be fast enough  Embedded systems  Non-specialized hardware 3

  4. C ONTRIBUTION  Analyse pseudorandom number generator libraries  Security  Performance 4

  5. R ANDOM NUMBER GENERATION  Measure physical phenomena  Radioactive decay  Radio waves from space  Special hardware needed  With non-specialized hardware  Require low-level access to device drivers  Operating systems provide these RNGs  /dev/random and /dev/urandom in Linux  CryptoAPI in Windows 5

  6. R ANDOM NUMBER GENERATION ( SOFTWARE )  Two kind of software random number generators:  Deterministic random bit generators aka pseudorandom number generators (PRNGs)  Non- deterministic random bit generators aka “true” random number generators  National Institute of Standards and Technology:  Several approved PRNGs  No approved “true” RNGs 6

  7. P SEUDORANDOM NUMBER GENERATOR SEED  Security depends on seed – piece of data with enough entropy  Seed is initial value that is used to calculate all subsequent values  Seed has to chosen carefully 7

  8. T ESTING ENVIRONMENT  Tests for each PRNG  Written in C++  Generate 1 MB of random  Run 100 times, calculate average  Environment  Intel Core Duo CPU @ 1.83 GHz  2 GB RAM  32-bit Windows 7 RC  Cygwin 1.7  With GCC 4.3.2 8

  9. C++ BUILT - IN RANDOM  rand() declared in stdlib.h  Returns integer between 0 and RAND_MAX ≥ 32767  srand() used to seed PRNG  Not cryptograhically secure   Generates 1 MB of random in 2.77 ms 9

  10. C RYPTO ++ LIBRARY  Open source C++ class library  Includes several PRNGs  Version 5.6.0  Compiled under Cygwin with GCC 4.3.2 10

  11. C RYPTO ++ LC_RNG  Linear congruential generator  Not usable for cryptographic purposes   Generates 1 MB of random in 31.58 ms 11

  12. C RYPTO ++ R ANDOM P OOL  Does not usually produce secure random numbers  After calling IncorporateEntropy() generates cryptographically secure random data   Method not available in every environment  Generates 1 MB of random in 2 437.57 ms 12

  13. C RYPTO ++ A UTO S EEDED R ANDOM P OOL  Seeds itself with operating system provided RNG  Can use both blocking and non-blocking RNGs  Generates cryptographically secure random values   Generates 1 MB of random in 2 408.62 ms 13

  14. C RYPTO ++ A UTO S EEDED X917RNG  PRNG from ANSI X9.17 Appendix C  Seeded with operating system provided PRNG  Suitable for cryptographic use   Can use different block ciphers  Generates 1 MB of random in  3 724.85 ms with DES cipher  2 386.19 ms with Rijndael (AES) cipher 14

  15. O PEN SSL LIBRARY  Open source toolkit  Implements Secure Socket Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols  Version 0.9.8k, precompiled for Cygwin 15

  16. O PEN SSL RAND_ BYTES  RAND_pseudorandom_bytes() → not for cryptographic use  RAND_bytes() → for cryptographic use   Entropy level can be increased by  Mixing memory into entropy pool  Collecting entropy from Windows events or screen contents  Generates 1 MB of random in 2 929.63 ms 16

  17. SNOW 2  Stream cipher  Cryptographically secure   In theory not as secure as block ciphers  Generates 1 MB of random in 6.64 ms 17

  18. PRNG PERFORMANCE TEST RESULTS PRNG name Avg. time (ms) C++ rand() 2.77 Crypto++ LC_RNG 31.58 Crypto++ RandomPool 2 437.57 Crypto++ AutoSeededRandomPool 2 408.62 Crypto++ AutoSeededX917RNG with DES 3 724.85 Crypto++ AutoSeededX917RNG with Rijndael 2 386.19 OpenSSL RAND_bytes() 2 929.63 SNOW 2 6.64 18

  19. T HE S HAREMIND FRAMEWORK  Distributed virtual machine  Allows to perform multiparty computation on secret shared data.  Three independent data-miners  Communicate over the netwotk, using special protocol  Almost all messages are encrypted 19

  20. M ULTIPLICATION (X9.17 RNG) 900 800 700 600 Time (ms) 500 Other Random 400 Waiting InQueue 300 OutQueue 200 100 0 10000 20000 30000 40000 50000 60000 70000 80000 90000 100000 20 Vector size

  21. M ULTIPLICATION (SNOW 2) 900 800 700 600 Time (ms) 500 Other Random 400 Waiting InQueue 300 OutQueue 200 100 0 10000 20000 30000 40000 50000 60000 70000 80000 90000 100000 21 Vector size

  22. C OMPARISON OF AES AND SNOW 2 900 800 700 600 Time (ms) 500 AES 400 SNOW 2 300 200 100 0 10000 20000 30000 40000 50000 60000 70000 80000 90000 100000 22 Vector size

  23. C ONCLUSION  Cryptography is used in our everyday life  More secure PRNGs take more time  Applications that make intensive use of random number generators should use hardware security modules 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Retrosp specti ctive: Feedback ack-directed Ran andom Test Ge Generation on Carlos Pacheco,

Retrosp specti ctive: Feedback ack-directed Ran andom Test Ge Generation on Carlos Pacheco,

Retrosp specti ctive: Feedback ack-directed Ran andom Test Ge Generation on Carlos Pacheco, Shuvendu Lahiri, Michael D. Ernst , Thomas Ball ICSE 2007 MIP retrospective May 26, 2017 Wh Who loves to write tests? Problem: Developers do

485 views • 32 slides
Stochastic Simulation Random number generation Bo Friis Nielsen Applied Mathematics and Computer

Stochastic Simulation Random number generation Bo Friis Nielsen Applied Mathematics and Computer

Stochastic Simulation Random number generation Bo Friis Nielsen Applied Mathematics and Computer Science Technical University of Denmark 2800 Kgs. Lyngby Denmark Email: bfn@imm.dtu.dk Random number generation Random number generation

464 views • 18 slides
Stochastic Simulation Random number generation Bo Friis Nielsen Applied Mathematics and Computer

Stochastic Simulation Random number generation Bo Friis Nielsen Applied Mathematics and Computer

Stochastic Simulation Random number generation Bo Friis Nielsen Applied Mathematics and Computer Science Technical University of Denmark 2800 Kgs. Lyngby Denmark Email: bfn@imm.dtu.dk Random number generation Random number generation

537 views • 38 slides
R andom M atrices , I ntefaces and H ydrodynamics S ingularities P. Wiegmann review of works with

R andom M atrices , I ntefaces and H ydrodynamics S ingularities P. Wiegmann review of works with

R andom M atrices , I ntefaces and H ydrodynamics S ingularities P. Wiegmann review of works with friends: Anton Zabrodin, Eldad Bettelheim, Razvan Teodorescu, Seun Yeop Lee June 26, 2015 1 / 38 List of Objects Random Matrix Models:

624 views • 38 slides
A r ran andom omize ized, d, double ble-bli blinde nded, d, phas ase e III II study dy

A r ran andom omize ized, d, double ble-bli blinde nded, d, phas ase e III II study dy

ATezolizumab and Avastin in LA AT LAte recurreNT NT diseasE ENGOT-ov29-GCIG A r ran andom omize ized, d, double ble-bli blinde nded, d, phas ase e III II study dy of atezo zoliz izum umab ab versus sus placebo cebo in patien

631 views • 7 slides
Software development lifecycle The power of process How complex is software? What is complex?

Software development lifecycle The power of process How complex is software? What is complex?

Software Life Cycle Software development lifecycle The power of process How complex is software? What is complex? How complex is software? Measures of complexity: lines of code number of classes number of modules module

752 views • 38 slides
Bu Budget-aw awar are Ran andom om Testin ing wit ith T3 T3 Bench chmarking at at the

Bu Budget-aw awar are Ran andom om Testin ing wit ith T3 T3 Bench chmarking at at the

Bu Budget-aw awar are Ran andom om Testin ing wit ith T3 T3 Bench chmarking at at the SBST2016 Testin ing Tool ool Con ontest Wishnu Prasetya, Utrecht University http://www.cs.uu.nl/~wishnu

154 views • 12 slides
Teaching Labs on Pseudorandom Number Generation Elizabeth Patitsas University of Toronto &

Teaching Labs on Pseudorandom Number Generation Elizabeth Patitsas University of Toronto &

Introduction Lab Details Our Experience Conclusion Teaching Labs on Pseudorandom Number Generation Elizabeth Patitsas University of Toronto & University of British Columbia July 5, 2012 Teaching Labs on Pseudorandom Number Generation

192 views • 16 slides
Rev eview iew of of Probabilit obability Theor heory and and Random andom Proces ocesses

Rev eview iew of of Probabilit obability Theor heory and and Random andom Proces ocesses

CMPE 252A: Computer Networks Rev eview iew of of Probabilit obability Theor heory and and Random andom Proces ocesses es 1 Probability Theory A mathematical model used to quantify the likelihood of events taking place in an

197 views • 16 slides
Prime Number Generation KLA Each student is a processor in the pipeline. Sequence of numbers will

Prime Number Generation KLA Each student is a processor in the pipeline. Sequence of numbers will

Prime Number Generation KLA Each student is a processor in the pipeline. Sequence of numbers will be passed down the pipeline. If you receive a number and do not currently possess a number, that number becomes yours. If you receive a number and

690 views • 9 slides
NFS Don Porter CSE 506 together as the !handle for a rue. The inode generation number is

NFS Don Porter CSE 506 together as the !handle for a rue. The inode generation number is

NFS Don Porter CSE 506 together as the !handle for a rue. The inode generation number is necessary because the server may hand out an !handle with an inode number of a file that is later removed and the inode J reused. When the original

617 views • 24 slides
ES-TRNG A High- throughput , Low-area T rue R andom N umber G enerator based on E dge S ampling

ES-TRNG A High- throughput , Low-area T rue R andom N umber G enerator based on E dge S ampling

ES-TRNG A High- throughput , Low-area T rue R andom N umber G enerator based on E dge S ampling Bohan Yang , Vladimir Roi , Milo Gruji Nele Mentens and Ingrid Verbauwhede COSIC, KU Leuven Generic TRNG Architecture Timing jitter

522 views • 16 slides
Pseudorandom Number Generation Thanks once again to A. Joseph, D. Tygar, U. Vazirani, and D.

Pseudorandom Number Generation Thanks once again to A. Joseph, D. Tygar, U. Vazirani, and D.

Pseudorandom Number Generation Thanks once again to A. Joseph, D. Tygar, U. Vazirani, and D. Wagner at the University of California, Berkeley Fall 2012 CS 334: Computer Security 1 What Can Go Wrong? An example: This generates a 16

836 views • 35 slides
Random Number Generation Using Normal Numbers Michael Mascagni 1 and F . Steve Brailsford 2

Random Number Generation Using Normal Numbers Michael Mascagni 1 and F . Steve Brailsford 2

Random Number Generation Using Normal Numbers Random Number Generation Using Normal Numbers Michael Mascagni 1 and F . Steve Brailsford 2 Department of Computer Science 1 , 2 Department of Mathematics 1 Department of Scientific Computing 1

1.15k views • 104 slides
Chapter 7 Random-Number Generation Banks, Carson, Nelson & Nicol Discrete-Event System

Chapter 7 Random-Number Generation Banks, Carson, Nelson & Nicol Discrete-Event System

Chapter 7 Random-Number Generation Banks, Carson, Nelson & Nicol Discrete-Event System Simulation Purpose & Overview Discuss the generation of random numbers. Introduce the subsequent testing for randomness: Frequency test

440 views • 24 slides
FPGA-based True Random Number Generation using Circuit

FPGA-based True Random Number Generation using Circuit

FPGA-based True Random Number Generation using Circuit Meta-stability with Adaptive Feedback Control Mehrdad Majzoobi 1 , Farinaz Koushanfar 1, and

243 views • 21 slides
For Wednesday Read chapter 12, section 2 Program 5 due Program 5 Any questions?

For Wednesday Read chapter 12, section 2 Program 5 due Program 5 Any questions?

For Wednesday Read chapter 12, section 2 Program 5 due Program 5 Any questions? Research Paper Any questions? Linear Congruential Generators Basic concept: x i +1 = A x i mod M First x must be given: cannot be 0.

398 views • 20 slides
Objectives Random Bit Generation Pseudorandom Bit Generation Statistical Tests

Objectives Random Bit Generation Pseudorandom Bit Generation Statistical Tests

Pseudorandomness Debdeep Mukhopadhyay Assistant Professor Department of Computer Science and Engineering Indian Institute of Technology Kharagpur INDIA -721302 Objectives Random Bit Generation Pseudorandom Bit Generation

379 views • 17 slides
Chapter 1: Introduction to data OpenIntro Statistics, 2nd Edition Case study Case study 1 Data

Chapter 1: Introduction to data OpenIntro Statistics, 2nd Edition Case study Case study 1 Data

Chapter 1: Introduction to data OpenIntro Statistics, 2nd Edition Case study Case study 1 Data basics 2 Overview of data collection principles 3 Observational studies and sampling strategies 4 Experiments 5 Examining numerical data 6

2.25k views • 187 slides
Outline Significance Levels (8.2.4) z -Tests (8.2.5) ests (8 5) Summary (8.3) 1

Outline Significance Levels (8.2.4) z -Tests (8.2.5) ests (8 5) Summary (8.3) 1

1/18/2007 219323 Probability y and Statistics for Software and Knowledge Engineers Lecture 9: Hypothesis Testing (cont.) Monchai Sopitkamon, Ph.D. Outline Significance Levels (8.2.4) z -Tests (8.2.5) ests (8 5) Summary (8.3)

466 views • 14 slides
AMath 483/583 Lecture 26 Outline: Monte Carlo methods Random number generators

AMath 483/583 Lecture 26 Outline: Monte Carlo methods Random number generators

AMath 483/583 Lecture 26 Outline: Monte Carlo methods Random number generators Monte Carlo integrators Random walk solution of Poisson problem R.J. LeVeque, University of Washington AMath 483/583, Lecture 26 Announcements

587 views • 41 slides
Classical Ciphers Classical

Classical Ciphers Classical

Classical Ciphers Classical Cryptography Monoalphabetic ciphers: letters of the plaintext alphabet are mapped into unique ciphertext letters Polyalphabetic ciphers:

512 views • 49 slides
Mass Properties of the Union of Millions of Polyhedra Wm Randolph Franklin Rensselaer Polytechnic

Mass Properties of the Union of Millions of Polyhedra Wm Randolph Franklin Rensselaer Polytechnic

Mass Properties of the Union of Millions of Polyhedra Wm Randolph Franklin Rensselaer Polytechnic Institute wrf@ecse.rpi.edu http://www.ecse.rpi.edu/Homepages/wrf July 15, 2003 Abstract We present UNION3, a fast algorithm for computing the

286 views • 10 slides
Improved Discrepancy Bounds for Hybrid Sequences Harald Niederreiter RICAM Linz and University

Improved Discrepancy Bounds for Hybrid Sequences Harald Niederreiter RICAM Linz and University

Improved Discrepancy Bounds for Hybrid Sequences Harald Niederreiter RICAM Linz and University of Salzburg MC vs. QMC methods Hybrid sequences The basic sequences Deterministic discrepancy bounds The proof techniques MC

592 views • 19 slides

More recommend