1 A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Application This contribution discusses some aspects of testing.

Slides:

Advertisements

Similar presentations

Tests of Hypotheses Based on a Single Sample

Advertisements

Kasumi Block Cipher Data Encryptors Darshan Gandhi Rushabh Pasad.

Random Number Generation & Testing Juan Soto 301/

Henry C. H. Chen and Patrick P. C. Lee

Flash Memory for Ubiquitous Hardware Security Functions

Random Number Generation. Random Number Generators Without random numbers, we cannot do Stochastic Simulation Most computer languages have a subroutine,

Session 2: Secret key cryptography – stream ciphers – part 2.

Stream ciphers 2 Session 2. Contents PN generators with LFSRs Statistical testing of PN generator sequences Cryptanalysis of stream ciphers 2/75.

Economics 105: Statistics Go over GH 11 & 12 GH 13 & 14 due Thursday.

Ch. 21 Practice.

Environmental Data Analysis with MatLab Lecture 23: Hypothesis Testing continued; F-Tests.

+ Random Number Tests. + Load balancing (computing) Load balancing is a computer networking method for distributing workloads across multiple computing.

Session 6: Introduction to cryptanalysis part 2. Symmetric systems The sources of vulnerabilities regarding linearity in block ciphers are S-boxes. Example.

HSC: Building Stream Cipher from Secure Hash Functions Juncao Li Nov. 29 th 2007 Department of Computer Science Portland State University.

Stream cipher diagram + + Recall: One-time pad in Chap. 2.

Fundamental limits in Information Theory Chapter 10 :

Evaluating Hypotheses Chapter 9. Descriptive vs. Inferential Statistics n Descriptive l quantitative descriptions of characteristics.

Prague Institute of Chemical Technology - Department of Computing and Control Engineering Digital Signal & Image Processing Research Group Brunel University,

Chapter 6 Hypotheses texts. Central Limit Theorem Hypotheses and statistics are dependent upon this theorem.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 5 Wenbing Zhao Department of Electrical and Computer Engineering.

Methods of Image Compression by PHL Transform Dziech, Andrzej Slusarczyk, Przemyslaw Tibken, Bernd Journal of Intelligent and Robotic Systems Volume: 39,

SIMULATION. Simulation Definition of Simulation Simulation Methodology Proposing a New Experiment Considerations When Using Computer Models Types of Simulations.

Sequence comparison: Significance of similarity scores Genome 559: Introduction to Statistical and Computational Genomics Prof. James H. Thomas.

Copyright (c) 2004 Brooks/Cole, a division of Thomson Learning, Inc. Chapter 8 Tests of Hypotheses Based on a Single Sample.

Review of Probability.

Statistical hypothesis testing – Inferential statistics I.

EE5552 Network Security and Encryption block 4 Dr. T.J. Owens CEng MIET Dr T. Itagaki MIET, MIEEE, MAES.

ETM 607 – Random Number and Random Variates

One Sample  M ean μ, Variance σ 2, Proportion π Two Samples  M eans, Variances, Proportions μ1 vs. μ2 σ12 vs. σ22 π1 vs. π Multiple.

Hypothesis Testing.

Estimation and Hypothesis Testing. The Investment Decision What would you like to know? What will be the return on my investment? Not possible PDF for.

Statistical inference: confidence intervals and hypothesis testing.

Chapter 2 Basic Encryption and Decryption. csci5233 computer security & integrity 2 Encryption / Decryption encrypted transmission AB plaintext ciphertext.

Secure storage of cryptographic keys within random volumetric materials Roarke Horstmeyer 1, Benjamin Judkewitz 1, Ivo Vellekoop 2 and Changhuei Yang 1.

Random Number Generators Tamer ÖZ. Random Number Generators OUTLINE Randomness And Random Number Usefulness Of Random Numbers Random Number Generators.

● Final exam Wednesday, 6/10, 11:30-2:30. ● Bring your own blue books ● Closed book. Calculators and 2-page cheat sheet allowed. No cell phone/computer.

DISTRIBUTED SYSTEMS RESEARCH GROUP CHARLES UNIVERSITY PRAGUE Faculty of Mathematics and Physics Behavior Composition in Component.

Random-Number Generation Andy Wang CIS Computer Systems Performance Analysis.

Chapter 7 Random-Number Generation

Image Restoration using Iterative Wiener Filter --- ECE533 Project Report Jing Liu, Yan Wu.

Channel Capacity.

Pseudo-random generators Random Number Generating There are three types of generators table look-up generators hardware generators algorithmic (software)

Problem Solving Techniques. Compiler n Is a computer program whose purpose is to take a description of a desired program coded in a programming language.

STATISTICAL AND PERFORMANCE ANALYSIS OF SHA-3 HASH CANDIDATES Ashok V Karunakaran Department of Computer Science Rochester Institute of Technology Committee.

Confidence intervals and hypothesis testing Petter Mostad

Chapter 7 – Confidentiality Using Symmetric Encryption.

Testing Hypothesis That Data Fit a Given Probability Distribution Problem: We have a sample of size n. Determine if the data fits a probability distribution.

Monté Carlo Simulation  Understand the concept of Monté Carlo Simulation  Learn how to use Monté Carlo Simulation to make good decisions  Learn how.

McGraw-Hill/Irwin © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. 1.

CHES Viktor Fischer Université Jean Monnet, Saint-Etienne, France Miloš Drutarovský Technical University of Košice,

Lecture 3: Statistics Review I Date: 9/3/02  Distributions  Likelihood  Hypothesis tests.

Jan Dvořák, Jiří Souček : The R&D Efficiency Evaluation in the Czech Republic CRIS2008 – Maribor, Slovenia – June 2008 InfoScience Praha, s.r.o.

p-value use to determine if there’s a “statistically significant difference” between groups of data probability of error by convention, if p > 0.05, then.

Statistical Inference Statistical inference is concerned with the use of sample data to make inferences about unknown population parameters. For example,

======!"§==Systems= Technical Guidance for CC Evaluation Wolfgang Killmann T-Systems GEI GmbH.

By Jyh-haw Yeh Department of Computer Science Boise State University.

Hypothesis Testing Steps for the Rejection Region Method State H 1 and State H 0 State the Test Statistic and its sampling distribution (normal or t) Determine.

The Idea of the Statistical Test. A statistical test evaluates the "fit" of a hypothesis to a sample.

Gil McVean, Department of Statistics Thursday February 12 th 2009 Monte Carlo simulation.

Chapter 7 – Confidentiality Using Symmetric Encryption.

Statistical Testing of Random Number Generators Juan Soto 301/

Dieharder An Open Source Random Number Generator Tester Robert G. Brown Physics Department Duke TechExpo 2011.

STAT 312 Chapter 7 - Statistical Intervals Based on a Single Sample

A cryptographically secure pseudorandom number generator for Julia

Cryptography and Network Security Chapter 7

CHAPTER 6 Statistical Inference & Hypothesis Testing

Image Coding and Compression

Cryptanalysis of Block Ciphers

Randomness and Statistical Tests

Presentation transcript:

1 A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Application This contribution discusses some aspects of testing random and pseudorandom number generators. A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Applications (NIST Special Publication) is presented. The software implementation of the test suite with output protocols and presents experiences from testing some random and pseudorandom generators. Jiří Sobotík and Václav Plátěnka Department of Special Communication Systems Military Academy in Brno Brno, Czech Republic and The Military Technical Institute of Electronic Prague, Czech Republic

2 The test suite should be applied in the first steps of an evaluation process of generator. If the generator or other primitives do not pass the test suite then they are not suitable for cryptographic application. Tests Suite cannot substitute a detailed cryptanalysis. Applicability Cryptographic applications lay great emphasis on the statistical properties of random and pseudorandom number generators. The sequences generated by these generators must be indistinguishable from the sequences generated by “true random generators”. Any non-randomness in the generated sequences rapidly degrades the security of cryptographic systems as a whole.

3 The NIST Test Suite consists of 16 statistical tests that were developed to test the randomness of binary sequences. 1.The Frequency (Monobit) Test 2.Frequency Test within a Block 3.The Runs Tests 4.Test for the Longest-Run-of-Ones in a Block 5.The Binary Matrix Rank Test 6.The Discrete Fourier Transform (Spectral) Test 7.The Non-overlapping Template Matching Test 8.The Overlapping Template Matching Test 9.Maurer’s “Universal Statistical” Test 10.The Lempel-Ziv Compression Test 11.The linear Complexity Test 12.The Serial Test 13.The approximate Entropy Test 14.The Cumulative Sums (Cusums) Test 15.The Random Excursion Test 16.The Random Excursion Variant Test

4 The General Structure of the Statistical Test Each test is based on a calculated test statistic value, which is a function of the testing sequence. The test statistic value is use to calculate a Pvalue P value is the probability that the perfect random number generator would have produced a sequence less random than the sequence that was tested. Statistic: If P value   then accept otherwise reject. Decision rule: Example (Frequency test): P value : Complemntary error function Summationa statistic Significant level  [0.001 – 0.01] The hypothesis about randomness of tested sequences is accepted on significant level . The hypothesis about randomness of tested sequences is rejected on significant level .

5 Software Implementation of Test Suite In publication, each test from the test suite is described in detail and an elementary example is done. The verification examples of tests of known sequences (binary expansion of e number,  number, ) are included so that it is not difficult to program the all tests in mathematically-oriented programming languages; e.g. MATLAB, MATHCAD or MATEMATICA.

6

7

8 Thank you for your attention