软件随机数发生器安全性的研究综述  被引量：3

作　　者：刘攀 陈天宇[1,2] 马原[1,2] 吴鑫莹 吕娜[1,2] 荆继武 LIU Pan;CHEN Tian-Yu;MA Yuan;WU Xin-Ying;LV Na;JING Ji-Wu(State Key Laboratory of Information Security,Institute of Information Engineering,Chinese Academy of Sciences,Beijing 100093,China;Data Assurance and Communications Security Research Center,Chinese Academy of Sciences,Beijing 100093,China;School of Computer Science and Technology,University of Chinese Academy of Sciences,Beijing 100049,China)

机构地区：[1]中国科学院信息工程研究所信息安全国家重点实验室,北京100093 [2]中国科学院数据与通信保护研究教育中心,北京100093 [3]中国科学院大学计算机科学与技术学院,北京100049

出　　处：《密码学报》2020年第6期735-749,共15页Journal of Cryptologic Research

基　　金：十三五国家密码发展基金(MMJJ20180113)。

摘　　要：随机数发生器在现代密码学中是基础而重要的组成元素,为密码算法、安全协议、数字签名等密码技术提供根本性的安全保障.目前,软件随机数发生器得益于开发成本低、迭代更新方便、生成的随机数具有良好统计性质等优势,在各类操作系统、嵌入式系统平台上使用非常广泛,为众多密码应用提供随机数服务.然而,不安全的随机数则会导致整个系统存在安全风险.因此,本文总结了典型操作系统平台中软件随机数发生器的基本结构和工作原理,包括Linux平台的随机数发生器、Android平台的OpenSSL所使用的伪随机数发生器和Windows平台的随机数发生器等.同时,梳理了当前软件随机数发生器的安全性分析关注点,包括有效熵源的选取、面向熵源的熵估计技术准确度等方面.Random number generator(RNG)is a basic and important element in modern cryptography,which provides fundamental security for cryptographic algorithms,security protocols,digital signatures,and other cryptographic technologies.At present,the software-based random number generator is widely used on various operating systems and embedded systems to provide random number generation services for many cryptographic applications,which benefits from its advantages of low development costs,convenient iteration updates,and good statistical properties of random numbers generated by this type of generators.However,insecure random numbers will cause the entire system to be compromised.Hence,this paper summarizes the basic structures and working principles of the software-based random number generators in different typical operating system platforms,including the random number generator on the Linux platform,pseudo random number generator used by OpenSSL on the Android platform,and random number generator on the Windows platform,etc.In addition,we sort out the security analysis concerns of the software-based random number generators,including the selection of effective entropy sources,the accuracy of entropy estimation technologies for entropy sources,etc.

关 键 词：软件随机数发生器 操作系统 设计技术 安全性分析 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]