Filters

2017 - 201942020 - 20252
Reset filters

Settings

COAR Access Rights: open accessSubject: Cryptography

Search Results

Now showing 1 - 6 of 6
  • Thumbnail Image
    Article
    Citation - WoS: 11
    Citation - Scopus: 12
    Mutual Correlation of Nist Statistical Randomness Tests and Comparison of Their Sensitivities on Transformed Sequences
    (Tubitak Scientific & Technological Research Council Turkey, 2017) Doganaksoy, Ali; Sulak, Fatih; Uguz, Muhiddin; Seker, Okan; Akcengiz, Ziya
    Random sequences are widely used in many cryptographic applications and hence their generation is one of the main research areas in cryptography. Statistical randomness tests are introduced to detect the weaknesses or nonrandom characteristics that a sequence under consideration may have. In the literature, there exist various statistical randomness tests and test suites, defined as a collection of tests. An efficient test suite should consist of a number of uncorrelated statistical tests each of which measures randomness from another point of view. `Being uncorrelated' is not a well-defined or well-understood concept in the literature. In this work, we apply Pearson's correlation test to measure the correlation between the tests. In addition, we define five new methods for transforming a sequence. Our motivation is to detect those tests whose results are invariant under a certain transformation. To observe the correlation, we use two methods. One is the direct correlation between the tests and the other is the correlation between the results of a test on the sequence and its transformed form. In light of the observations, we conclude that some of the tests are correlated with each other. Furthermore, we conclude that in designing a reliable and efficient suite we can avoid overpopulating the list of test functions by employing transformations together with a reasonable number of statistical test functions.
  • Thumbnail Image
    Article
    Citation - WoS: 29
    Citation - Scopus: 31
    On the Independence of Statistical Randomness Tests Included in the Nist Test Suite
    (Tubitak Scientific & Technological Research Council Turkey, 2017) Sulak, Fatih; Uguz, Muhiddin; Kocak, Onur; Doganaksoy, Ali
    Random numbers and random sequences are used to produce vital parts of cryptographic algorithms such as encryption keys and therefore the generation and evaluation of random sequences in terms of randomness are vital. Test suites consisting of a number of statistical randomness tests are used to detect the nonrandom characteristics of the sequences. Construction of a test suite is not an easy task. On one hand, the coverage of a suite should be wide; that is, it should compare the sequence under consideration from many different points of view with true random sequences. On the other hand, an overpopulated suite is expensive in terms of running time and computing power. Unfortunately, this trade-off is not addressed in detail in most of the suites in use. An efficient suite should avoid use of similar tests, while still containing sufficiently many. A single statistical test gives a measure for the randomness of the data. A collection of tests in a suite give a collection of measures. Obtaining a single value from this collection of measures is a difficult task and so far there is no conventional or strongly recommended method for this purpose. This work focuses on the evaluation of the randomness of data to give a unified result that considers all statistical information obtained from different tests in the suite. A natural starting point of research in this direction is to investigate correlations between test results and to study the independences of each from others. It is started with the concept of independence. As it is complicated enough to work even with one test function, theoretical investigation of dependence between many of them in terms of conditional probabilities is a much more difficult task. With this motivation, in this work it is tried to get some experimental results that may lead to theoretical results in future works. As experimental results may reflect properties of the data set under consideration, work is done on various types of large data sets hoping to get results that give clues about the theoretical results. For a collection of statistical randomness tests, the tests in the NIST test suite are considered. Tests in the NIST suite that can be applied to sequences shorter than 38,912 bits are analyzed. Based on the correlation of the tests at extreme values, the dependencies of the tests are found. Depending on the coverage of a test suite, a new concept, the coverage efficiency of a test suite, is defined, and using this concept, the most efficient, the least efficient, and the optimal subsuites of the NIST suite are determined. Moreover, the marginal benefit of each test, which also helps one to understand the contribution of each individual test to the coverage efficiency of the NIST suite, is found. Furthermore, an efficient subsuite that contains five statistical randomness tests is proposed.
  • Thumbnail Image
    Article
    Citation - WoS: 1
    Citation - Scopus: 3
    LS-14 Test Suite for Long Sequences
    (Hacettepe Univ, Fac Sci, 2024) Akcengiz, Ziya; Aslan, Melis; Doğanaksoy, Ali; Sulak, Fatih; Uguz, Muhiddin
    Random number sequences are used in many branches of science. Because of many techni- cal reasons and their practicality, pseudo random sequences are usually employed in place of true number sequences. Whether a sequence generated through a deterministic process is a pseudo random, in other words, random-looking sequence or it contains certain pat- terns, can be determined with the help of statistics and mathematics. Although, in the literature there are many statistical randomness tests for this purpose, there is no much work on test suites specialized for long sequences, that is sequences of length 1,000,000 bits or more. Most of the randomness tests for long sequences use some mathematical ap- proximations to compute expected values of the random variables and hence their results contain some errors. Another approach to evaluate randomness criteria of long sequences is to partition the long sequence into a collection short sequences and evaluate the collec- tion for the ran- domness using statistical goodness of fit tests. The main advantage of this approach is, as the individual sequences are short, there is no need to use mathematical approximations. On the other hand when the second approach is preferred, partition the long sequence into a collection of fixed length subsequences and this approach causes a loss of information in some cases. Hence the idea of dynamic partition should be included to perform a more reliable test suite. In this paper, we propose three new tests, namely the entire R2 run, dynamic saturation point, and dynamic run tests. Moreover, we in- troduce a new test suite, called LS-14, consisting of 14 tests to evaluate randomness of long sequences. As LS-14 employs all three approaches: testing the entire long sequence, testing the collection of fixed length partitions of it, and finally, testing the collection obtained by the dynamic partitions of it, the proposed LS-14 test suit differs from all existing suites. Mutual comparisons of all 14 tests in the LS-14 suite, with each other are computed. Moreover, results obtained from the proposed test suite and NIST SP800-22 suite are compared. Examples of sequences with certain patterns which are not observed by NIST SP800-22 suite but detected by the proposed test suite are given.
  • Thumbnail Image
    Article
    Citation - WoS: 2
    Observations on Nist Sp 800-90b Entropy Estimators
    (Springer, 2025) Aslan, Melis; Doganaksoy, Ali; Saygi, Zulfukar; Turan, Meltem Sonmez; Sulak, Fatih
    Random numbers play a crucial role in cryptography since the security of cryptographic protocols relies on the assumption of the availability of uniformly distributed and unpredictable random numbers to generate secret keys, nonce, salt, etc. However, real-world random number generators sometimes fail and produce outputs with low entropy, leading to security vulnerabilities. The NIST Special Publication (SP) 800-90 series provides guidelines and recommendations for generating random numbers for cryptographic applications and describes 10 black-box entropy estimation methods. This paper evaluates the effectiveness and limitations of the SP 800-90 methods by exploring the accuracy of these estimators using simulated random numbers with known entropy, investigating the correlation between entropy estimates, and studying the impacts of deterministic transformations on the estimators.
  • Thumbnail Image
    Article
    Citation - WoS: 8
    Periodic Template Tests: a Family of Statistical Randomness Tests for a Collection of Binary Sequences
    (Elsevier, 2019) Sulak, Fatih; Doganaksoy, Ali; Uguz, Muhiddin; Kocak, Onur
    In this work, we classify all templates according to their periods and for each template we evaluate the exact probabilities using generating functions. Afterwards, we propose a new family of statistical randomness tests, that is periodic template tests, for a collection of binary sequences. We apply these tests to the outputs of AES, SHA-3, SHA-2 family, SHA-1 and MD5 and the binary expansion of pi and root 2 and biased non-random data to test the power of new tests. Moreover, we give the probabilities for all templates for the overlapping template matching test in the NIST test suite. Afterwards, we analyse the power of templates and compare the periodic template tests with NIST overlapping template test. (C) 2019 Elsevier B.V. All rights reserved.
  • Thumbnail Image
    Article
    Citation - WoS: 3
    Citation - Scopus: 3
    New Statistical Randomness Tests: 4-Bit Template Matching Tests
    (Tubitak Scientific & Technological Research Council Turkey, 2017) Sulak, Fatih
    For cryptographic algorithms, secret keys should be generated randomly as the security of the system depends on the key and therefore generation of random sequences is vital. Randomness testing is done by means of statistical randomness tests. In this work, we show that the probabilities for the overlapping template matching test in the NIST test suite are only valid for a specific template and need to be recalculated for the other templates. We calculate the exact distribution for all 4-bit templates and propose new randomness tests, namely template matching tests. The new tests can be applied to any sequence of minimum length 5504 whereas the overlapping template matching test in the NIST test suite can only be applied to sequences of minimum length 10(6). Moreover, we apply the proposed tests to biased nonrandom data and observe that the new tests detect the nonrandom behavior of the generator even for a bias of 0.001, whereas the template matching tests in NIST cannot detect that bias.