Skip to Main content Skip to Navigation
Conference papers

Designing a Side Channel Resistant Random Number Generator

Abstract : This paper describes the design of the random number generator (RNG) in the Caernarvon high assurance smart card operating system. Since it is used in the generation of cryptographic keys and other sensitive materials, the RNG has a number of stringent security requirements that the random bits must be of good quality i.e. the bits must not be predictable or biased. To this end, a number of standards such as the German AIS 31 mandate that true random bits be continuously tested before use in sensitive applications such as key generation. A key issue in implementing this standard is that such testing before use in key generation greatly increases the attack surface for side-channel attacks. For example, template attacks which can extract information about the random bits from even a single run provided we use the same bits at many different points in the computation. Because of these potential risks, the Caernarvon operating system uses pseudo random number generators which are initially seeded by externally generated high quality random bits, and then perturbed by bits from the true random number generator. We describe a PRNG design which yields high quality random bits while also ensuring that it is not susceptible to side-channel attacks and provide an informal argument about its effectiveness.
Document type :
Conference papers
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, July 11, 2014 - 1:49:52 PM
Last modification on : Friday, August 11, 2017 - 3:20:29 PM
Long-term archiving on: : Tuesday, April 11, 2017 - 12:12:29 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Suresh Chari, Vincenzo Diluoffo, Paul Karger, Elaine Palmer, Tal Rabin, et al.. Designing a Side Channel Resistant Random Number Generator. 9th IFIP WG 8.8/11.2 International Conference on Smart Card Research and Advanced Applications (CARDIS), Apr 2010, Passau, Germany. pp.49-64, ⟨10.1007/978-3-642-12510-2_5⟩. ⟨hal-01023028⟩



Record views


Files downloads