论文信息 - On the Additional Chi-Square Tests for the IID Assumption of NIST SP 800-90B

On the Additional Chi-Square Tests for the IID Assumption of NIST SP 800-90B

Recently, NIST has published the second draft of SP 800-90B used for entropy estimations of random number generators. It is conducted within the framework of a cryptographic module validation program (CMVP) for the entropy source. The official evaluation criteria such as CMVP should be supported by rigorous and theoretical foundations so as to achieve the credibility and reliability of the evaluation process. For the theoretical background of the entropy estimation, it is assumed in SP 800-90B that the distribution of the entropy source is unknown since we cannot obtain an appropriate hypothesis about the distribution of the noise source which is a component of the entropy source. In this case, the nonparametric statistical method is commonly used. The test suite of SP 800-90B is divided into two major steps. The first step is to determine the track, IID(independent and identically distributed) or Non-IID, and the second step is to estimate the entropy of the given source. The permutation tests and additional chi-square tests are used to test IID assumption for entropy source in the first step, and when all tests in the first step are passed, the given source is determined as IID. Depending on whether the given data is determined as IID or Non-IID, the entropy estimation is conducted using different estimators in the second step. In this paper, we concentrate on the additional chi-square tests and analyze them from the view point of the nonparametric statistical method. We find out several defects of the degrees of freedom in the tests of independence for binary and non-binary data. We correct the degrees of freedom based on our analysis, and it solidifies the theoretical basis of SP 800- 90B. Furthermore, we provide some experimental results with the corrected degrees of freedom which show that the corrected tests are more effective.

Ju-Sung Kang | Yongjin Yeom | Hojoong Park

[1] John Kelsey,et al. Recommendation for the Entropy Sources Used for Random Bit Generation , 2018 .

[2] T. Utlaut. Nonparametric Statistics with Applications to Science and Engineering , 2008 .

[3] Toshinobu Kaneko,et al. Correction of Overlapping Template Matching Test Included in NIST Randomness Test Suite , 2007, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..

[4] Franklin A. Graybill,et al. Introduction to The theory , 1974 .

[5] Limin Fan,et al. Corrected runs distribution test for pseudorandom number generators , 2016 .

[6] Yuan Ma,et al. More Powerful and Reliable Second-Level Statistical Randomness Tests for NIST SP 800-22 , 2016, ASIACRYPT.

[7] Patrick Lacharme,et al. The Linux Pseudorandom Number Generator Revisited , 2012, IACR Cryptol. ePrint Arch..

[8] G. G. Stokes. "J." , 1890, The New Yale Book of Quotations.

[9] John Kelsey,et al. Recommendation for Random Number Generation Using Deterministic Random Bit Generators , 2014 .

[10] Functionality Classes and Evaluation Methodology for Deterministic Random Number Generators , 2011 .

[11] W. Killmann,et al. A proposal for : Functionality classes and evaluation methodology for true ( physical ) random number generators , 2002 .