Dual EC DRBG

This page contains a list of user images about Dual EC DRBG which are relevant to the point and besides images, you can also use the tabs in the bottom to browse Dual EC DRBG news, videos, wiki information, tweets, documents and weblinks.

Dual EC DRBG Images

connect() timed out!couldn't connect to host

P!nk - Just Give Me A Reason ft. Nate Ruess

Rihanna - Take A Bow
Music video by Rihanna performing Take A Bow. YouTube view counts pre-VEVO: 66288884. (C) 2008 The Island Def Jam Music Group.

David Guetta - Titanium ft. Sia

MACKLEMORE & RYAN LEWIS - THRIFT SHOP FEAT. WANZ (OFFICIAL VIDEO)

David Guetta - She Wolf (Falling To Pieces) ft. Sia

Rihanna - Rehab ft. Justin Timberlake
Music video by Rihanna performing Rehab. YouTube view counts pre-VEVO: 19591123. (C) 2007 The Island Def Jam Music Group.

Key & Peele: Substitute Teacher
A substitute teacher from the inner city refuses to be messed with while taking attendance.

Man of Steel - Official Trailer 3 [HD]

MACKLEMORE X RYAN LEWIS - OTHERSIDE REMIX FEAT. FENCES [MUSIC VIDEO]
The Otherside Remix Music Video was filmed in various locations for about a year and a half throughout 2010-2011. It is the duo's second video collaboration ...

Celebrities Read Mean Tweets #2
Jimmy Kimmel Live - Celebrities Read Mean Tweets #2 Jimmy Kimmel Live's YouTube channel features clips and recaps of every episode from the late night TV sho...

Einstein vs Stephen Hawking -Epic Rap Battles of History #7
Download this song: http://bit.ly/EpicRap7 New ERB merch: http://bit.ly/MNwYxq Tweet this Vid-ee-oh: http://clicktotweet.com/TpUg9 Hi. My name is Nice Peter,...

Taylor Swift - Back To December
Music video by Taylor Swift performing Back To December. (C) 2011 Big Machine Records, LLC.

Rihanna - Stay ft. Mikky Ekko

David Guetta - Just One Last Time ft. Taped Rai
"Just One Last Time" feat. Taped Rai. Available to download on iTunes including remixes of : Tiësto, HARD ROCK SOFA & Deniz Koyu http://smarturl.it/DGJustOne...

David Guetta - Little Bad Girl ft. Taio Cruz, Ludacris

MACKLEMORE & RYAN LEWIS - CAN'T HOLD US FEAT. RAY DALTON (OFFICIAL MUSIC VIDEO)
Macklemore & Ryan Lewis present the official music video for Can't Hold Us feat. Ray Dalton. Can't Hold Us on iTunes: https://itunes.apple.com/us/album/cant-...

Rihanna - Diamonds

Draw My Life- Jenna Marbles
This video accidentally turned out kind of sad, ME SO SOWWY IT NOT POSED TO BE SAD WHO WANTS HUGS AND COOKIES? Also, FYI for anyone attempting this, it takes...

Fun.: We Are Young ft. Janelle Monáe [OFFICIAL VIDEO]
Fun.'s music video for 'We Are Young' featuring Janelle Monáe from the full-length album, Some Nights - available now on Fueled By Ramen. Visit http://ournam...

F*@#ing Ben Affleck
Jimmy reveals that he is f*@#ing Ben Affleck.

Dual_EC_DRBG or Dual Elliptic Curve Deterministic Random Bit Generator^[1] is a controversial pseudorandom number generator (PRNG) designed and published by the National Security Agency. It is based on the elliptic curve discrete logarithm problem (ECDLP) and is one of the four PRNGs standardized in the NIST Special Publication 800-90. Shortly after the NIST publication, it was suggested that the RNG could be a kleptographic NSA backdoor.^[2]

1 Security
2 Controversy
3 See also
4 References
5 External links

Security [edit]

The stated purpose of including the Dual_EC_DRBG in NIST SP 800-90 is that its security is based on a hard problem from number theory, such as the elliptic curve Decision Diffie-Hellman problem. Given the importance of having secure random number generators in cryptography, in certain cases it may be desirable to sacrifice speed for security.

Subsequent to publication of the Dual_EC_DRBG algorithm, various researchers have reported certain security issues with the properties of the Dual_EC_DRBG:

The intermediate values it generates, a sequence of elliptic curve points, should, under certain reasonable assumptions, such as the Decision Diffie-Hellman problem, be indistinguishable from uniformly random elliptic curve points.^[3]^[4]^[5]

The sequence of bits generated from the Dual_EC_DRBG, under certain parameter choices, can be distinguished from uniformly random bits, making its output unsuitable for use as a stream cipher, and, arguably, for more general use.^[3]^[5]^[6]

Its security requires that a certain problem be hard, such as the computational Diffie-Hellman problem, but one of the recommended configurations of the Dual_EC_DRBG permits the possibility that a key, which facilitates solution of the problem, has been retained. See the Controversy section for more discussion.

Controversy [edit]

This PRNG has been controversial because it was published in the NIST standard despite being three orders of magnitude slower than the other three standardized algorithms, and containing several weaknesses which have been identified since its standardization.^[2]

In August 2007, Dan Shumow and Niels Ferguson discovered that the algorithm has a vulnerability which could be used as a backdoor. Given the wide applications of PRNGs in cryptography, this vulnerability could be used to defeat practically any cryptosystem relying on it. The algorithm uses several constants which determine the output; it is possible that these constants are deliberately crafted in a way that allows the designer to predict its output.^[2]^[7]

This is an asymmetric backdoor as defined in cryptovirology that uses public-key encryption: the designer of the algorithm generates a keypair consisting of the public and private key; the public key is published as the algorithm's constants, while the private key is kept secret. It employs the discrete-log kleptogram introduced in Crypto 1997.^[8] Whenever the algorithm is being used, the holder of the private key can decrypt its output, revealing the state of the PRNG, and thereby allowing him to predict any future output. Yet for third parties, there is no way to detect the existence of the private key (nor to prove the non-existence of any such key). However, Appendix A.2 of the NIST document, which describes the weakness, does contain a method of generating a new keypair which will repair the backdoor if it exists.

References [edit]

^ Recommendations for Random Number Generation Using Deterministic Random Bit Generators (Revised) (PDF). National Institute of Standards and Technology. 2007-03. NIST SP 800-90.
^ ^a ^b ^c Bruce Schneier (2007-11-15). "Did NSA Put a Secret Backdoor in New Encryption Standard?". Wired News.
^ ^a ^b Kristian Gjøsteen. Comments on Dual-EC-DRBG/NIST SP 800-90
^ Daniel R. L. Brown (2006). Conjectured Security of the ANSI-NIST Elliptic Curve RNG.
^ ^a ^b Daniel R. L. Brown and Kristian Gjøsteen. A Security Analysis of the NIST SP 800-90 Elliptic Curve Random Number Generator, CRYPTO 2007, LNCS 4622, Springer, pp. 466–481. IACR ePrint version
^ Berry Schoenmakers and Andrey Sidorenko. Cryptanalysis of the Dual Elliptic Curve Pseudorandom Generator, IACR ePrint 2006/190.
^ Dan Shumow, Niels Ferguson (2007-08). "On the Possibility of a Back Door in the NIST SP800-90 Dual Ec Prng" (PDF). CRYPTO Rump Session 2007. Microsoft. http://rump2007.cr.yp.to/15-shumow.pdf.
^ Adam L. Young, Moti Yung (1997). "The Prevalence of Kleptographic Attacks on Discrete-Log Based Cryptosystems". CRYPTO.

External links [edit]

Controversial random number generator in Vista Service Pack 1

Conspiracy theories

List of conspiracy theories

Core topics

Psychology

Deaths and
disappearances

Assassinations	Geoffrey Chaucer (1400) Princes in the Tower (1483) Kaspar Hauser (1833) Abraham Lincoln (1865) Franz Ferdinand (1914) Phar Lap (1932) Sergey Kirov (1934) Joseph Stalin (1953) Dag Hammarskjöld (1961) Patrice Lumumba (1961) Marilyn Monroe (1962) John F. Kennedy (1963) Malcolm X (1965) Robert F. Kennedy (1968) Martin Luther King Jr. (1968) Juscelino Kubitschek (1976) Pope John Paul I (1978) Airey Neave (1979) John Lennon (1980) Francisco de Sá Carneiro and Adelino Amaro da Costa (1980) Olof Palme (1986) Zia-ul-Haq (1988) Vince Foster (1993) Kurt Cobain (1994) Yitzhak Rabin (1995) Diana, Princess of Wales (1997) Nepalese royal family (2001) David Kelly (2003) Alexander Litvinenko (2006) Benazir Bhutto (2007) Michael Jackson (2009) Osama bin Laden (2011)

False flag attacks	USS Maine (1898) RMS Lusitania (1915) Reichstag fire (1933) Pearl Harbor (1941) Operation "Gladio" USS Liberty (1967) KAL Flight 007 (1983) Mozambican presidential jet (1986) Pan Am Flight 103 (1988) Oklahoma City bombing (1995) Port Arthur massacre (1996) TWA Flight 800 (1996) Russian apartment bombings (1999) 9/11 attacks Advance knowledge WTC collapse Madrid train bombing (2004) London bombings (2005) Sandy Hook shooting (2012)

Other	Great Irish Famine (1840s) RMS Titanic (1912) Armenian Genocide (1915–23) The Holocaust (1940s) Yemenite Children (1948–54) Cairo Fire (1952) Dyatlov Pass incident (1959) Lost Cosmonauts (1950s / 1960s) Jonestown (1978) Satanic ritual abuse (blood libel) SAA Flight 295 (1987) MS Estonia (1994)

16th / 17th-century
England

New World Order

UFOs

General	Alien abduction Area 51 Bermuda Triangle Cryptoterrestrial hypothesis Extraterrestrial hypothesis Interdimensional hypothesis Dulce Base Estimate of the Situation (1948) Majestic 12 Men in Black Nazi UFOs Project Serpo Reptilians

Incidents	Tunguska (1908) Ghost rockets (1946) Maury Island (1947) Roswell (1947) Mantell (1948) Kecksburg (1965) Rendlesham Forest (1980) Cash-Landrum (1980) Varginha (1996) Phoenix Lights (1997) Chicago (2006)

United States
government

Health, energy,
environment

Other

Twitter

News

Documents

Weblinks

SOLUTION NINE

Social Web Research

Dual EC DRBG Research Materials

Contents

Security [edit]

Controversy [edit]

See also [edit]

References [edit]

External links [edit]

What is SOLUTION NINE?

Updates:

Categories:

More Categories:

Company Information: