Cryptography – Miscellaneous
Reexamination Certificate
1998-08-03
2001-11-13
Peeso, Thomas R. (Department: 2132)
Cryptography
Miscellaneous
C380S277000
Reexamination Certificate
active
06317499
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Field of the Invention
This invention relates generally to a secure physical random bit generator apparatus and method for generating random bits and, more particularly, it relates to a secure physical random bit generator apparatus and method for generating random bits using computer storage devices as a source of randomness.
2. Background of Related Art
As one of many uses, randomness and randomness generation are a central aspect of cryptography. In cryptography, randomness is paramount for key randomness generation, is necessary in many encryption algorithms and interactive proofs, and useful for boosting the efficiency of algorithms. Randomness is the pillar on which anonymity rests, and protocol soundness often requires access to a source of random bits.
It has been proven that if a one-way function exists, then, given a random seed, it is possible to generate more randomness (a polynomial amount in the length of the seed). A function that amplifies randomness in this manner is called a pseudo-random generator. It is also known that if the underlying hardness assumption holds (i.e., that a particular function cannot be inverted in polynomial time in the length of its security parameter) then it is impossible to predict the next bit to be output by the pseudo-random generator with a probability non-negligibly better than ½.
It should be noted that the ability to predict the next output bit holds only if the seed is unknown to the adversary. Therefore, randomness (in the form of the short seed) is necessary in order to produce more randomness.
In commercial cryptographic packages, the seed is generally supplied by the user. One approach for use by the user is to base the seed on timing information between key strokes during a period of several minutes during which the user “bangs the keyboard”. Allegedly, this produces a random seed, but is rather inconvenient to the user. Thus, more automated methods have been suggested based on physical phenomena having a large portion of unpredictability.
For instance, one such method uses the time between observed emissions from a radioactive material. Another method measures the frequency instability of an oscillator. Both of these methods require the introduction of new devices, i.e., the radioactive material and the noisy transistor, respectively, and the measuring mechanisms to observe these devices. Other methods include the quantum-mechanical noise in transistors and lava lamp blobs. Needless to say, additional devices and mechanisms increase costs and new potential weaknesses, particularly if the device or meter stops working as designed.
Accordingly, there exists a need for a secure physical random bit generator apparatus and method for generating random bits which does not require user involvement, is not predictable, and is not manipulatable. Additionally, a need exists for a secure physical random bit generator apparatus and method for generating random bits which does not require any new equipment or any modifications to a computer'operating system. Furthermore, there exists a need for a secure physical random bit generator apparatus and method for generating random bits which allows the user to easily determine whether the generator is functioning correctly. Further yet, a need exists for a secure physical random bit generator apparatus and method for generating random bits which is based on a well-studied physical phenomenon thereby establishing an assurance of the level of randomness for the user.
SUMMARY OF THE INVENTION
The present invention is an apparatus for generating random bits from a computer system. The apparatus comprises a rotating storage device operating within a computer system. A rotational latency of the rotating storage device is associated with the computer system accessing information from the storage device with the rotational latency causing the accessing of the information to have an entropy. An extractor extracts random bits derived from entropy of the rotational latency of the storage device.
The present invention is further an apparatus for generating random bits from a computer system. The computer system has hardware components and software components communicating in an input/output (I/O) circuit path. The apparatus comprises a storage device operating within the computer system with the storage device responding to access requests from the hardware components and the software components at random rates. An extractor extracts random bits derived from the variance of the storage device response times from the hardware components and the software components.
The present invention additionally includes a method for deriving random bits from a computer system with the computer system having hardware components and software components in an I/O path. The method comprises providing an operating storage device within the computer system, measuring the time required by the storage device to respond to a access request, and deriving the random bit output from the measurements.
REFERENCES:
Davis et al, “Cryptographic Randomness from Air Turbulence in Disk Drives”, CRYPTO '94, Springer, 1994.*
Eastlake et al, “Randomness Recommendations for Security (rfc 1750)”, Network Working Group, 1994.
Hillyer Bruce Kenneth
Jakobsson Bjorn Markus
Shriver Elizabeth
Bollman William H.
Lucent Technologies - Inc.
Peeso Thomas R.
LandOfFree
Storage device random bit generator does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Storage device random bit generator, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Storage device random bit generator will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2595803