The Journal of Korean Institute of Communications and Information Sciences (한국통신학회논문지)

The Korean Institute of Commucations and Information Sciences (한국통신학회)
권호 표지
DOI QR코드

DOI QR Code

An Experimental Analysis on Entropy Estimators for the Entropy Sources Using Predictors of NIST SP 800-90B

NIST SP 800-90B 프레딕터를 이용한 잡음원의 엔트로피 추정량에 대한 실험적 분석

  • Park, Hojoong (Kookmin University Department of Financial Information Security) ;
  • Bae, Minyoung (Kookmin University Department of Financial Information Security) ;
  • Yeom, Yongjin (Kookmin University Department of Math. / Financial Information Security) ;
  • Kang, Ju-Sung (Kookmin University Department of Math. / Financial Information Security)
  • Received : 2016.08.30
  • Accepted : 2016.11.25
  • Published : 2016.12.31
Download PDF
⟨ Previous Next ⟩

Abstract

NIST SP 800-90B is developed to evaluate the security of entropy sources. As SP 800-90B was updated to Second Draft, Estimators with predictors were added at Non-IID track. Though the predictors are known as detecting periodic property of noise sources, periodic properties which are detected by predictor are not clearly known. In this paper, we experiment to find properties of predictors. Once, by experiments we have a result that the min-entropy of Non-IID noise sources is generally determined by tests except for estimators with predictors. And then through presenting various experimental results for clarifying periodic properties detected by predictor, we experimentally analyze on its meaning and role of predictor estimation.

잡음원(Noise source)의 안전성 평가에 사용되는 대표적인 표준으로는 미국 NIST의 SP 800-90B가 있다. 최근 SP 800-90B가 2차 안(Second Draft)으로 개정되면서 Non-IID 트랙의 최소 엔트로피 추정에 프레딕터(predictor)를 이용한 추정 방법이 새롭게 추가되었다. 프레딕터는 잡음원의 주기적인 특성을 검출하기에 용이하다고 알려져 있지만, 그 특성에 대한 구체적인 언급은 하지 않고 있다. 이에 본 논문에서는 프레딕터가 검출해낼 수 있는 잡음원의 주기적 특성을 명확히 밝히기 위한 실험을 진행한다. 먼저 주기적 성질을 갖는 잡음원에 대하여 Non-IID 트랙의 추정을 실시했을 때, 잡음원의 최소 엔트로피가 대체적으로 프레딕터보다는 Non-IID 트랙의 다른 추정 방법에 의해서 결정되고 있음을 실험적으로 확인한다. 다음으로 프레딕터를 이용한 추정법이 검출해낼 수 있는 주기적 특성을 밝혀내기 위한 다양한 실험 결과를 제시함으로써, 프레딕터 추정 방법의 의미와 그 역할을 실험적으로 규명한다.

Keywords

References

  1. NIST, Recommendation for the Entropy Sources Used for Random Bit Generation, NIST DRAFT Special Publication 800-90B, Aug. 2012.
  2. NIST, Recommendation for Random Bit Generator(RBG) Constructions, NIST Special Publication 800-90C, Aug. 2012.
  3. H. Kang, Y. Yeom, and J. S. Kang, "An implementation of integrated tool for statistical randomness tests and entropy estimations," in Proc. KICS Winter Conf. 2016, pp. 229-230, Jeongseon, Korea, Jan. 2016.
  4. NIST, Recommendation for the Entropy Sources Used for Random Bit Generation, (Second DRAFT)NIST Special Publication 800-90B, Jan. 2016.
  5. C. E. Shannon, "Prediction and entropy of printed English," Bell Syst. Tech. J., vol. 30, no. 1, pp. 50-64, 1951. https://doi.org/10.1002/j.1538-7305.1951.tb01366.x
  6. K. Horvath, H. Stogner, A. Uhl, and G. Weinhandel, "Lossless compression of polar iris image data," Pattern Recognition and Image Anal., vol. 6669, pp. 329-337, 2011. https://doi.org/10.1007/978-3-642-21257-4_41
  7. N. Chater and C. D. Manning, "Probabilistic models of language processing and acquisition," Trends in Cognitive Sci., vol. 10, no. 7, pp. 335-344, 2006. https://doi.org/10.1016/j.tics.2006.05.006
  8. R. Collobert, J. Weston, L, Bottou, M. Karlen, K. Kavukcuoglu, and P. Kuksa, "Natural language processing (almost) from scratch," J. Machine Learning Res., pp. 2493-2537, 2011.
  9. J. Kelsey, K. A. McKay, and M. S. Turan, "Predictive models for min-entropy estimation," CHES 2015, vol. 9293, pp. 373-392, Sept. 2015.
  10. Y. Kim and K. Yi, "Safety comparision analysis against known/chosen plaintext attack of RBF (Random Block Feedback) mode to other block cipher modes of operation," J. KICS, vol. 39B no. 05, pp. 317-322, 2014. https://doi.org/10.7840/kics.2014.39B.5.317
  11. H. Park, M. Bae, J. S. Kang, and Y. Yeom, "Key derivation functions using the dual key agreement based on QKD and RSA cryptosystem," J. KICS, vol. 41 no. 04, pp. 479-488, 2016. https://doi.org/10.7840/kics.2016.41.4.479
  12. K. J. Ha, C. H. Seo, and D. Y. Kim, "Design of validation system for a crypto-algorithm implementation," J. KICS, vol. 39B no. 04, pp. 242-250, 2014. https://doi.org/10.7840/kics.2014.39B.4.242
  13. H. Park, M. Bae, Y. Yeom, and J. S. Kang, "A study on the predictor of Non-IID track in SP 800-90B," in Proc. KICS Int. Conf. Commun., pp. 115-116, Jeju, Korea, Jun. 2016.
  14. D. Salomon, Data Compression: The Complete Reference Fourth Edition, Springer, pp. 189-192, 2007.
  15. W. Feller, An Introduction to Probability Theory and Its Applications Third Edition, John Wiley & Sons, Inc, pp. 303-341, 1950.
  16. ID Quantique SA, Retrieved Aug., 28 from http://www.idquantique.com/random-number-generation/quantis-random-number-generator/.
  17. NIST, SP800-90B_EntropyAssessment, Retrieved Aug., 28 from https://github.com/usnistgov/SP800-90B_EntropyAssessment.