Constructing Empirical Tests of Randomness

Sýs, Marek; Švenda, Petr; Ukrop, Martin; Matyáš, Václav

doi:10.5220/0005023902290237

Cited by 4 publications

(6 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Three statistical test suites were used to evaluate the output of the GBPA cipher: the Statistical Test Suite from NIST (STS) [ 19 ], DIEHARD from G. Marsaglia [ 25 ] and EACirc from the Centre for Research on Cryptography and Security [ 26 ]. The first one contains 15 tests and the second one 19, where each test inspects either the distribution of ones and zeroes, harmonics or patterns in the sequence.…”

Section: Resultsmentioning

confidence: 99%

“…EACirc is an open-source project available at [ 27 ]. The STS and DIEHARD test batteries are well known and have been used by many articles to assess randomness; however, there exists a documented case where these batteries were not able to detect non-randomness on a sequence, while EACirc did [ 26 ]. Considering this limitation of STS and DIEHARD, the EACirc framework was also used to evaluate the randomness of GBPA.…”

Section: Resultsmentioning

confidence: 99%

“…One of the advantages of EACirc is that it requires a lower amount of bits to detect non-randomness compared with the previous test suites, being able to work with even 1000 bits [ 26 ]. The parameters used during the evaluation of GBPA and Salsa20 sequences were the default ones presented in [ 27 ], which can be summarized as follows:…”

Section: Resultsmentioning

confidence: 99%

“…The function set parameter included all the operations supported by EACirc, and these were used to construct the test stochastically using a genetic algorithm [ 26 ].…”

Section: Resultsmentioning

confidence: 99%

See 3 more Smart Citations

A Lightweight Cipher Based on Salsa20 for Resource-Constrained IoT Devices

Lara

Aguilar

García

et al. 2018

Sensors

View full text Add to dashboard Cite

The Internet of Things (IoT) paradigm envisions a world where everyday things interchange information between each other in a way that allows users to make smarter decisions in a given context. Even though IoT has many advantages, its characteristics make it very vulnerable to security attacks. Ciphers are a security primitive that can prevent some of the attacks; however, the constrained computing and energy resources of IoT devices impede them from implementing current ciphers. This article presents the stream cipher Generador de Bits Pseudo Aleatorios (GBPA) based on Salsa20 cipher, which is part of the eSTREAM project, but designed for resource-constrained IoT devices of Class 0. GBPA has lower program and data memory requirements compared with Salsa20 and lightweight ciphers. These properties allow low-cost resource-constrained IoT devices, 29.5% of the embedded systems in the market, to be able to implement a security service that they are currently incapable of, to preserve the user’s data privacy and protect the system from attacks that could damage it. For the evaluation of its output, three statistical test suites were used: NIST Statistical Test Suite (STS), DIEHARD and EACirc, with good results. The GBPA cipher provides security without having a negative impact on the computing resources of IoT devices.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Resultsmentioning

confidence: 99%

Section: Resultsmentioning

confidence: 99%

“…The function set parameter included all the operations supported by EACirc, and these were used to construct the test stochastically using a genetic algorithm [ 26 ].…”

Section: Resultsmentioning

confidence: 99%

See 2 more Smart Citations

A Lightweight Cipher Based on Salsa20 for Resource-Constrained IoT Devices

Lara

Aguilar

García

et al. 2018

Sensors

View full text Add to dashboard Cite

show abstract

“…A different strategy is employed in the EACirc framework -it uses a genetically-inspired process to find a successful distinguisher (function capable for differencing between cipher output and random stream). The framework has been used for assessing the randomness of outputs produced by the roundlimited eSTREAM and SHA-3 candidates [22,18]. Although still falling behind in some cases, this approach surpasses NIST STS in a few instances.…”

Section: Related Researchmentioning

confidence: 99%

Avalanche Effect in Improperly Initialized CAESAR Candidates

Ukrop¹,

Švenda²

2016

Electron. Proc. Theor. Comput. Sci.

Self Cite

View full text Add to dashboard Cite

Cryptoprimitives rely on thorough theoretical background, but often lack basic usability features making them prone to unintentional misuse by developers. We argue that this is true even for the state-of-the-art designs. Analyzing 52 candidates of the current CAESAR competition has shown none of them have an avalanche effect in authentication tag strong enough to work properly when partially misconfigured. Although not directly decreasing their security profile, this hints at their security usability being less than perfect. Paper details available at crcs.cz/papers/memics2016Comment: In Proceedings MEMICS 2016, arXiv:1612.0403

show abstract