[Cryptech Tech] User auditable hardware entropy source/random number generator

Joachim Strömbergson joachim at secworks.se
Fri Jul 11 16:12:39 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Benedikt Stockebrand wrote:
> Anyway, in my design the MCU here has two jobs: To massage the
> output from the entropy source/noise generator circuit into a proper
> random bitstream (no bias, no correlation between bits) and to pass
> it on towards the computer.  The first job must be done somewhere,
> but the second one may become irrelevant if the FPGA is receiving the
> output.

What I think Fredrik had in mind was to use a MCU to implement control
and sampling of the entropy source. The idea is to have HW-blocks in the
FPGA that contains on-line tests (subset of AIS31 is my idea at the
moment) and then any decorrelation, bias adjustment, whitening before
providing the values to the mixer.

So half of what you are thinking of putting in the MCU would go into the
FPGA. But that is not written in stone or anything. As long as the
interface provides read access to the raw data (before massaging) and an
IRQ if the on-line tests fails one could implement it all in the MCU.

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=hrGe
-----END PGP SIGNATURE-----


More information about the Tech mailing list