XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF
A deterministic random bit generator (DRBG) generates pseudorandom bits from an unpredictable seed, i.e., a seed drawn from any random source with sufficient entropy. The current paper formalizes a security notion for a DRBG, in which an attacker may make any legal sequence of requests to the DRBG...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Ruhr-Universität Bochum
2024-03-01
|
| Series: | IACR Transactions on Symmetric Cryptology |
| Subjects: | |
| Online Access: | https://tosc.iacr.org/index.php/ToSC/article/view/11399 |
| _version_ | 1827333887415549952 |
|---|---|
| author | John Kelsey Stefan Lucks Stephan Müller |
| author_facet | John Kelsey Stefan Lucks Stephan Müller |
| author_sort | John Kelsey |
| collection | DOAJ |
| description |
A deterministic random bit generator (DRBG) generates pseudorandom bits from an unpredictable seed, i.e., a seed drawn from any random source with sufficient entropy. The current paper formalizes a security notion for a DRBG, in which an attacker may make any legal sequence of requests to the DRBG and sometimes compromise the DRBG state, but should still not be able to distingush DRBG outputs from ideal random bits. The paper proposes XDRBG, a new DRBG based on any eXtendable Output Function (XOF) and proves the security of the XDRBG in the ideal-XOF model. The proven bounds are tight, as demonstrated by matching attacks. The paper also discusses the security of XDRBG against quantum attackers. Finally, the paper proposes concrete instantiations of XDRBG, employing either the SHAKE128 or the SHAKE256 XDRBG. Alternative instantiations suitable for lightweight applications can be based on ASCON.
|
| first_indexed | 2024-03-07T17:38:05Z |
| format | Article |
| id | doaj.art-82c63e8fe54c484ba704d036bb752360 |
| institution | Directory Open Access Journal |
| issn | 2519-173X |
| language | English |
| last_indexed | 2024-03-07T17:38:05Z |
| publishDate | 2024-03-01 |
| publisher | Ruhr-Universität Bochum |
| record_format | Article |
| series | IACR Transactions on Symmetric Cryptology |
| spelling | doaj.art-82c63e8fe54c484ba704d036bb7523602024-03-02T16:23:08ZengRuhr-Universität BochumIACR Transactions on Symmetric Cryptology2519-173X2024-03-012024110.46586/tosc.v2024.i1.5-34XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOFJohn Kelsey0Stefan Lucks1Stephan Müller2National Institute of Standards and Technology (NIST), Gaithersburg, USA; COSIC, KU Leuven, Leuven, BelgiumBauhaus-Universität, Weimar, Germanyatsec information security corp, Austin, USA A deterministic random bit generator (DRBG) generates pseudorandom bits from an unpredictable seed, i.e., a seed drawn from any random source with sufficient entropy. The current paper formalizes a security notion for a DRBG, in which an attacker may make any legal sequence of requests to the DRBG and sometimes compromise the DRBG state, but should still not be able to distingush DRBG outputs from ideal random bits. The paper proposes XDRBG, a new DRBG based on any eXtendable Output Function (XOF) and proves the security of the XDRBG in the ideal-XOF model. The proven bounds are tight, as demonstrated by matching attacks. The paper also discusses the security of XDRBG against quantum attackers. Finally, the paper proposes concrete instantiations of XDRBG, employing either the SHAKE128 or the SHAKE256 XDRBG. Alternative instantiations suitable for lightweight applications can be based on ASCON. https://tosc.iacr.org/index.php/ToSC/article/view/11399pseudorandom bit generationforward securitybackward securityextendable output function (XOF) |
| spellingShingle | John Kelsey Stefan Lucks Stephan Müller XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF IACR Transactions on Symmetric Cryptology pseudorandom bit generation forward security backward security extendable output function (XOF) |
| title | XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF |
| title_full | XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF |
| title_fullStr | XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF |
| title_full_unstemmed | XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF |
| title_short | XDRBG: A Proposed Deterministic Random Bit Generator Based on Any XOF |
| title_sort | xdrbg a proposed deterministic random bit generator based on any xof |
| topic | pseudorandom bit generation forward security backward security extendable output function (XOF) |
| url | https://tosc.iacr.org/index.php/ToSC/article/view/11399 |
| work_keys_str_mv | AT johnkelsey xdrbgaproposeddeterministicrandombitgeneratorbasedonanyxof AT stefanlucks xdrbgaproposeddeterministicrandombitgeneratorbasedonanyxof AT stephanmuller xdrbgaproposeddeterministicrandombitgeneratorbasedonanyxof |