## Dual EC DRBG |

## Background on DRBGs and back doorsDRBG stands for "Deterministic Random Bit Generator", i.e. a deterministic method of deriving bits used as if they were random bits. More commonly such mechanisms are referred to as PRNGs, which stands for "Pseudo-Random Number Generators". "Pseudo-random" means that the outputs appear to be random even though they are not actually random, and saying "number" rather than "bit" reflects the fact that a typical PRNG produces many bits of output at once. Here is a schematic illustration of how a typical PRNG works:
At every step the inner state S
The RNG is not secure if there is a way to obtain information on
S
In this case, the attacker has an advantage of reconstructing the
inner state. Once S ## Authors of this "Background on DRBGs and back doors" page (alphabetical order)- Daniel J. Bernstein, University of Illinois at Chicago and Technische Universiteit Eindhoven
- Tanja Lange, Technische Universiteit Eindhoven
- Ruben Niederhagen, Technische Universiteit Eindhoven
Last modified: 2014.03.30 |