基于周期计数差的熵源在线监测研究  

作　　者：欧庆于[1] 罗芳[1] 褚潍禹 OU Qing-yu;LUO Fang;CHU Wei-yu(Department of Information Security,Naval University of Engineering,Wuhan,Hubei 430033,China)

机构地区：[1]海军工程大学信息安全系,湖北武汉430033

出　　处：《电子学报》2023年第11期3388-3396,共9页Acta Electronica Sinica

基　　金：国家自然科学基金(No.61672531)。

摘　　要：作为密码应用核心要素,真随机数发挥着不可替代的作用.为保证其质量,真随机数大多基于随机物理现象构造的熵源产生,这也使得其易遭受由环境引入或攻击者恶意施加的扰动影响,进而对密码应用安全产生威胁.为确保真随机数的质量,当前各主要国际标准均明确要求真随机数发生器(True Random Number Generator,TRNG)应针对熵源生成的原始随机数(raw random numbers)提供在线监测功能.然而,由于现有在线监测大多基于抽样统计方法构建,导致其在实际应用中存在实现复杂、耗费资源大等问题;另一方面,由于统计模型偏差及熵源输出分布受扰动因素影响等原因,使得现有在线监测方法普遍存在过估计问题.本文以当前广泛采用的振荡环熵源为对象,对扰动场景下熵源特性变异成因及影响进行了深入分析,提出了用于刻画熵源特性的异源同构周期计数差表征方法,并结合变异阈值的标定,构建了具备高准确度、强实时性的熵源在线监测方法.与当前各主要在线监测方法相比,该方法在资源耗费方面具有明显优势,能够实时反映扰动场景下熵源在噪声分量、扰动感应耦合等方面的变异情况,实现对TRNG健康特性的有效监测.As the key element of the cryptography application,the true random number plays an irreplaceable role.To guarantee its quality,it can be mainly generated by the entropy source,composed of the random physical processes,so it is vulnerable to the ambient interference and the attack,and thus the security of the cryptography application can be threatened.To guarantee the quality of the true random number,the current main international standards require the true random number generator(TRNG)to be provided with the online inspection on the generated raw random numbers.However,the current online inspection is mainly implemented by the method of sampling statistics,so it has the problems of complicated implementation and huge resource consumption.On the other hand,because of the statistic model bias and the disturbance on the entropy source output distribution,the excessive estimation has become a common problem in the current online inspection method.In this paper,the current widely applied ring oscillator-based entropy source is researched.By analyzing the cause and the impact of the entropy source characteristic variation,the heterogeneous isomorphism cycle count difference is prompted to characterize the entropy source,and with the calibration of the variant threshold value,the online inspection method,with high accuracy and strong real-time,is established.Compared with the current online inspection methods,the proposed method has significant advantages of resource consumption,and the variation of the noise components,as well as the disturbance inductive couplings,can be reflected in real time,so the inspection on the characteristics of TRNG,can be effectively implemented.

关 键 词：真随机数发生器 熵源 在线监测 环境扰动 周期计数 ALLAN方差 

分 类 号：TP309.1[自动化与计算机技术—计算机系统结构]