[Cryptech Tech] Noise board on Novena

Joachim Strömbergson joachim at secworks.se
Wed Sep 24 07:14:34 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Fredrik Thulin wrote:
> To clarify, I think such a requirement would be a written requirement
> directed to the designers of 3rd party entropy sources, not an FPGA
> enforced one. It is my understanding too that it is rather expensive
> to implement statistical tests over long series of output from the
> entropy sources in the FPGA.
> 
> I think the always-running tests of the entropy sources will be
> limited to making sure they are not stuck at some value, and maybe a
> test to make sure the overall distribution of 0 and 1 bits are
> somewhat close to 50%.

I think differently - and the tutorial yesterday seems to agree with me
(or I with it. ;-)

We should at least be able to do a subset with 4, 5, 6 or so of the
AIS31 tests, which are designed to be implemented in HW as on-line,
continiously running tests. Judging by the tutorial these tests can be
implemented with quite few resources.

https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_31_Functionality_classes_for_random_number_generators_e.pdf?__blob=publicationFile


The stuck-at total failure test will also be there (i.e FIPS 186-2 style
of breakdown detectiom.)

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBCAAGBQJUIm9aAAoJEF3cfFQkIuyNjCUP/0wRq6r6rlsr0JY5bau/lps8
slXIB7o+5HnKf+l+5+g74PavJdllGAMuM9yWNXOIhYuE6/dBGPA3vxZJpP3W205P
UVoW4hZQW1Eij8B9VexqQbARrKqjwkb8/8IgNZI/DAvWE1zX+eEmXQwl1Tf7mjRI
nYvPgXl3G2sMRBLZXA+O75+4aoTQoKxqTuA7xsgK54ubpEdBQElLJDNZNndCPxoi
IrOho06rjjMQCPI08nQ+KRqKigirp+SwOj/qVcfy14tTcyRjNcdtCCMUilZuu/jj
Dvwx7L4skFJE6f+TYusLm8a47WW2knCaumVeGCPL5Of5YcZRPAAXTQEXKuQU6Fa/
W2Ax+nENw2RcaytgsJG7YgiQadskDb7hOwLe+zE9XxNyETkrL+B+x6rfb1IOTTbK
UWZcYL/dmp5Kyqxqh6pERTfnn90egqMKch/pWIIRHo3VJPWOxSHcc44orERMOhoz
Kx65sn7zmO1/rQogi28W0vg9LfwHxbGXoGMfy4kCptHQ2mZKpOPkoNN5pHFiQyXT
4HwaSnPPlbgKdrTFYLEusr5ffjSbokt333l/WNO3ZowOIJU4zEd58afyEo55A67C
JyK6Wugwm7V3yBNvvDrX+YJwnUn+WvUouJAa1Jc/L4mUg8rQ1CF6/33pTNiPG1Xs
6u57jiaDTlYKFKhXVc6Q
=3Mie
-----END PGP SIGNATURE-----


More information about the Tech mailing list