Random Number Generator Attack
The security of cryptographic systems depends on some secret data that is known to authorized persons but unknown and unpredictable to others. To achieve this unpredictability, some randomization is typically employed. Modern cryptographic protocols often require frequent generation of random quantities (see also nonce).
Quality in the random number generation (RNG) process is almost always required for security, and lack of quality generally provides attack vulnerabilities and so leads to lack of security, even to complete compromise, in cryptographic systems. The RNG process is particularly attractive to attackers because it is typically a single isolated hardware or software component easy to locate. If the attacker can substitute pseudo-random bits generated in a way he can predict, security is totally compromised, yet generally undetectable by any upstream test of the bits. Furthermore, such attacks require only a single access to the system that is being compromised. No data need be sent back in contrast to, say, a computer virus that steals keys and then e-mails them to some drop point.
Read more about Random Number Generator Attack: Human Generation of Random Quantities, Prominent Examples of Random Number Generator Security Issues, Attacks On Software Random Number Generators, Attacks On Hardware Random Number Generators, RNG Subversion, Defenses
Famous quotes containing the words random, number, generator and/or attack:
“Man always made, and still makes, grotesque blunders in selecting and measuring forces, taken at random from the heap, but he never made a mistake in the value he set on the whole, which he symbolized as unity and worshipped as God. To this day, his attitude towards it has never changed, though science can no longer give to force a name.”
—Henry Brooks Adams (1838–1918)
“Again, the great number of cultivated men keep each other up to a high standard. The habit of meeting well-read and knowing men teaches the art of omission and selection.”
—Ralph Waldo Emerson (1803–1882)
“He admired the terrible recreative power of his memory. It was only with the weakening of this generator whose fecundity diminishes with age that he could hope for his torture to be appeased. But it appeared that the power to make him suffer of one of Odette’s statements seemed exhausted, then one of these statements on which Swann’s spirit had until then not dwelled, an almost new word relayed the others and struck him with new vigor.”
—Marcel Proust (1871–1922)
“Scandal is an importunate wasp, against which we must make no movement unless we are quite sure that we can kill it; otherwise it will return to the attack more furious than ever.”
—Sébastien-Roch Nicolas De Chamfort (1741–1794)