NIST Special Publication 800-90A: Recommendation for Random Number Generation Using Deterministic Random Bit Generators
暫譯: NIST 特別出版品 800-90A:使用確定性隨機位元生成器的隨機數生成建議
Elaine Barker, John Kelsey, National Institute of Standards and Technology, U.S. Department of Commerce
- 出版商: CreateSpace Independ
- 出版日期: 2012-06-30
- 售價: $950
- 貴賓價: 9.5 折 $903
- 語言: 英文
- 頁數: 138
- 裝訂: Paperback
- ISBN: 1478169311
- ISBN-13: 9781478169314
海外代購書籍(需單獨結帳)
相關主題
商品描述
The National Institute of Standards and Technology Special Publication 800-90A: “Recommendation for Random Number Generation Using Deterministic Random Bit Generators” specifies techniques for the generation of random bits that may then be used directly or converted to random numbers when random values are required by applications using cryptography. There are two fundamentally different strategies for generating random bits. One strategy is to produce bits non-deterministically, where every bit of output is based on a physical process that is unpredictable; this class of random bit generators (RBGs) is commonly known as non-deterministic random bit generators (NRBGs). The other strategy is to compute bits deterministically using an algorithm; this class of RBGs is known as Deterministic Random Bit Generators (DRBGs). A DRBG is based on a DRBG mechanism as specified in this Recommendation and includes a source of entropy input. A DRBG mechanism uses an algorithm (i.e., a DRBG algorithm) that produces a sequence of bits from an initial value that is determined by a seed that is determined from the entropy input. Once the seed is provided and the initial value is determined, the DRBG is said to be instantiated and may be used to produce output. Because of the deterministic nature of the process, a DRBG is said to produce pseudorandom bits, rather than random bits. The seed used to instantiate the DRBG must contain sufficient entropy to provide an assurance of randomness. If the seed is kept secret, and the algorithm is well designed, the bits output by the DRBG will be unpredictable, up to the instantiated security strength of the DRBG. The security provided by an RBG that uses a DRBG mechanism is a system implementation issue; both the DRBG mechanism and its source of entropy input must be considered when determining whether the RBG is appropriate for use by consuming applications.~
商品描述(中文翻譯)
美國國家標準與技術研究所特別出版物 800-90A:「使用確定性隨機位元生成器的隨機數生成建議」規範了隨機位元的生成技術,這些隨機位元可以直接使用或在應用程式需要隨機值時轉換為隨機數,特別是在使用加密技術的情況下。生成隨機位元有兩種根本不同的策略。一種策略是非確定性地生成位元,其中每個輸出位元都是基於不可預測的物理過程;這類隨機位元生成器(RBGs)通常被稱為非確定性隨機位元生成器(NRBGs)。另一種策略是使用算法確定性地計算位元;這類RBGs被稱為確定性隨機位元生成器(DRBGs)。DRBG基於本建議中規範的DRBG機制,並包括一個熵輸入源。DRBG機制使用一個算法(即DRBG算法),該算法從由熵輸入確定的種子所決定的初始值生成一系列位元。一旦提供了種子並確定了初始值,則DRBG被認為已實例化,可以用來生成輸出。由於該過程的確定性特性,DRBG被認為生成的是偽隨機位元,而不是隨機位元。用於實例化DRBG的種子必須包含足夠的熵,以提供隨機性的保證。如果種子保持秘密,並且算法設計良好,則DRBG輸出的位元將是不可預測的,直到DRBG的實例化安全強度。使用DRBG機制的RBG所提供的安全性是一個系統實現問題;在確定RBG是否適合消費應用程式使用時,必須考慮DRBG機制及其熵輸入源。
