Random Number Generator Attack
The security of cryptographic systems depends on some secret data that is known to authorized persons but unknown and unpredictable to others. To achieve this unpredictability, some randomization is typically employed. Modern cryptographic protocols often require frequent generation of random quantities (see also nonce).
Quality in the random number generation (RNG) process is almost always required for security, and lack of quality generally provides attack vulnerabilities and so leads to lack of security, even to complete compromise, in cryptographic systems. The RNG process is particularly attractive to attackers because it is typically a single isolated hardware or software component easy to locate. If the attacker can substitute pseudo-random bits generated in a way he can predict, security is totally compromised, yet generally undetectable by any upstream test of the bits. Furthermore, such attacks require only a single access to the system that is being compromised. No data need be sent back in contrast to, say, a computer virus that steals keys and then e-mails them to some drop point.
Read more about Random Number Generator Attack: Human Generation of Random Quantities, Prominent Examples of Random Number Generator Security Issues, Attacks On Software Random Number Generators, Attacks On Hardware Random Number Generators, RNG Subversion, Defenses
Famous quotes containing the words random, number, generator and/or attack:
“... the random talk of people who have no chance of immortality and thus can speak their minds out has a setting, often, of lights, streets, houses, human beings, beautiful or grotesque, which will weave itself into the moment for ever.”
—Virginia Woolf (1882–1941)
“Ah, but to play man number one,
To drive the dagger in his heart,
To lay his brain upon the board
And pick the acrid colors out,
To nail his thought across the door,
Its wings spread wide to rain and snow,
To strike his living hi and ho....”
—Wallace Stevens (1879–1955)
“He admired the terrible recreative power of his memory. It was only with the weakening of this generator whose fecundity diminishes with age that he could hope for his torture to be appeased. But it appeared that the power to make him suffer of one of Odette’s statements seemed exhausted, then one of these statements on which Swann’s spirit had until then not dwelled, an almost new word relayed the others and struck him with new vigor.”
—Marcel Proust (1871–1922)
“...I believed passionately that Communists were a race of horned men who divided their time equally between the burning of Nancy Drew books and the devising of a plan of nuclear attack that would land the largest and most lethal bomb squarely upon the third-grade class of Thomas Jefferson School in Morristown, New Jersey.”
—Fran Lebowitz (b. 1950)