Large-scale randomness study of security margins for 100+
cryptographic functions

D 2022

Large-scale randomness study of security margins for 100+ cryptographic functions

KLINEC, Dušan, Marek SÝS, Karel KUBÍČEK, Petr ŠVENDA, Václav MATYÁŠ et. al.

Základní údaje

Originální název

Large-scale randomness study of security margins for 100+ cryptographic functions

Název česky

Rozsáhlá studie náhodnosti bezpečnostních rezerv pro 100+ kryptografických funkcí

Autoři

KLINEC, Dušan (703 Slovensko, garant, domácí), Marek SÝS (703 Slovensko, domácí), Karel KUBÍČEK (203 Česká republika), Petr ŠVENDA (203 Česká republika, domácí) a Václav MATYÁŠ (203 Česká republika, domácí)

Vydání

Lisbon, Portugal, Proceedings of the 19th International Conference on Security and Cryptography, od s. 134-146, 13 s. 2022

Nakladatel

Scitepress

Další údaje

Jazyk

angličtina

Typ výsledku

Stať ve sborníku

Obor

10200 1.2 Computer and information sciences

Stát vydavatele

Portugalsko

Utajení

není předmětem státního či obchodního tajemství

Forma vydání

tištěná verze "print"

Kód RIV

RIV/00216224:14330/22:00126488

Organizační jednotka

Fakulta informatiky

ISBN

978-989-758-590-6

ISSN

DOI

http://dx.doi.org/10.5220/0011267600003283

UT WoS

000853004900011

Klíčová slova anglicky

randomness analysis; cryptographic function; security-margin

Štítky

best6, core_B, firank_B

Příznaky

Mezinárodní význam, Recenzováno

Změněno: 14. 5. 2024 12:45, RNDr. Pavel Šmerk, Ph.D.

Anotace

V originále

The output of cryptographic functions, be it encryption routines or hash functions, should be statistically indistinguishable from a truly random data for an external observer. The property can be partially tested automatically using batteries of statistical tests. However, it is not easy in practice: multiple incompatible test suites exist, with possibly overlapping and correlated tests, making the statistically robust interpretation of results difficult. Additionally, a significant amount of data processing is required to test every separate cryptographic function. Due to these obstacles, no large-scale systematic analysis of the the round-reduced cryptographic functions w.r.t their input mixing capability, which would provide an insight into the behaviour of the whole classes of functions rather than few selected ones, was yet published. We created a framework to consistently run 414 statistical tests and their variants from the commonly used statistical testing batteries (NIST STS, Dieharder, TestU01, and BoolTest). Using the distributed computational cluster providing required significant processing power, we analyzed the output of 109 round-reduced cryptographic functions (hash, lightweight, and block-based encryption functions) in the multiple configurations, scrutinizing the mixing property of each one. As a result, we established the fraction of a function’s rounds with still detectable bias (a.k.a. security margin) when analyzed by randomness statistical tests.

Návaznosti

GA20-03426S, projekt VaV

Název: Ověření a zlepšení bezpečnosti kryptografie eliptických křivek

Investor: Grantová agentura ČR, Ověření a zlepšení bezpečnosti kryptografie eliptických křivek

LM2018131, projekt VaV

Název: Česká národní infrastruktura pro biologická data (Akronym: ELIXIR-CZ)

Investor: Ministerstvo školství, mládeže a tělovýchovy ČR, Česká národní infrastruktura pro biologická data

LM2018140, projekt VaV

Název: e-Infrastruktura CZ (Akronym: e-INFRA CZ)

Investor: Ministerstvo školství, mládeže a tělovýchovy ČR, e-Infrastruktura CZ

Citovat

KLINEC, Dušan, Marek SÝS, Karel KUBÍČEK, Petr ŠVENDA a Václav MATYÁŠ. Large-scale randomness study of security margins for 100+ cryptographic functions. In Sabrina De Capitani di Vimercati, Pierangela Samarati. Proceedings of the 19th International Conference on Security and Cryptography. Lisbon, Portugal: Scitepress, 2022, s. 134-146. ISBN 978-989-758-590-6. Dostupné z: https://dx.doi.org/10.5220/0011267600003283.

@inproceedings{2212658,
   author = {Klinec, Dušan and Sýs, Marek and Kubíček, Karel and Švenda, Petr and Matyáš, Václav},
   address = {Lisbon, Portugal},
   booktitle = {Proceedings of the 19th International Conference on Security and Cryptography},
   doi = {http://dx.doi.org/10.5220/0011267600003283},
   editor = {Sabrina De Capitani di Vimercati, Pierangela Samarati},
   keywords = {randomness analysis; cryptographic function; security-margin},
   howpublished = {tištěná verze "print"},
   language = {eng},
   location = {Lisbon, Portugal},
   isbn = {978-989-758-590-6},
   pages = {134-146},
   publisher = {Scitepress},
   title = {Large-scale randomness study of security margins for 100+ cryptographic functions},
   year = {2022}
}

TY  - JOUR
ID  - 2212658
AU  - Klinec, Dušan - Sýs, Marek - Kubíček, Karel - Švenda, Petr - Matyáš, Václav
PY  - 2022
TI  - Large-scale randomness study of security margins for 100+ cryptographic functions
PB  - Scitepress
CY  - Lisbon, Portugal
SN  - 9789897585906
KW  - randomness analysis
KW  - cryptographic function
KW  - security-margin
N2  - The output of cryptographic functions, be it encryption routines or hash functions, should be statistically indistinguishable from a truly random data for an external observer. The property can be partially tested automatically using batteries of statistical tests. However, it is not easy in practice: multiple incompatible test suites exist, with possibly overlapping and correlated tests, making the statistically robust interpretation of results difficult. Additionally, a significant amount of data processing is required to test every separate cryptographic function. Due to these obstacles, no large-scale systematic analysis of the the round-reduced cryptographic functions w.r.t their input mixing capability, which would provide an insight into the behaviour of the whole classes of functions rather than few selected ones, was yet published. We created a framework to consistently run 414 statistical tests and their variants from the commonly used statistical testing batteries (NIST STS, Dieharder, TestU01, and BoolTest). Using the distributed computational cluster providing required significant processing power, we analyzed the output of 109 round-reduced cryptographic functions (hash, lightweight, and block-based encryption functions) in the multiple configurations, scrutinizing the mixing property of each one. As a result, we established the fraction of a function’s rounds with still detectable bias (a.k.a. security margin) when analyzed by randomness statistical tests.
ER  -

KLINEC, Dušan, Marek SÝS, Karel KUBÍČEK, Petr ŠVENDA a Václav MATYÁŠ. Large-scale randomness study of security margins for 100+ cryptographic functions. In Sabrina De Capitani di Vimercati, Pierangela Samarati. \textit{Proceedings of the 19th International Conference on Security and Cryptography}. Lisbon, Portugal: Scitepress, 2022, s.~134-146. ISBN~978-989-758-590-6. Dostupné z: https://dx.doi.org/10.5220/0011267600003283.

Podrobný výpis o publikaci