RSA Security 4.3 manual Generating Random Numbers, Obtaining a Random Seed from Hardware

Page 20

Generating Random Numbers

Generating Random Numbers

This example demonstrates how to use the Intel Hardware Random Number Generator to seed a software-based pseudo-random number generator (PRNG). To generate random numbers, do the following:

1.Use the Intel Random Number Generator to generate a random seed. In general, you should use a seed that is at least 256 bits long.

2.Seed a pseudo-random number generator with the random value that you retrieved in the first step. Once you have provided a seed, you can use the PRNG to generate your random numbers.

If you are already using a Crypto-C PRNG in your applications, making the change to use the Intel Random Number Generator is easy. All you have to do is gather the seed as in 1 above, then make some minor changes to your existing implementation so that it can use the seed supplied by the Intel RNG.

Obtaining a Random Seed from Hardware

First, use the Intel Random Number Generator to acquire a random seed. To do this, you can write a function, GenerateSeed, that will retrieve random bytes from hardware.

Step 0: Create the Session Chooser

Before you can create an application that can access the Intel Random Number Generator, you need to create the session chooser that associates Intel’s hardware method, HW_INTEL_RANDOM, with Crypto-C’s generic method for hardware random number generation, AM_HW_RANDOM. First set up your software and hardware choosers, then call B_CreateSessionChooser. This call will combine the elements of the software chooser with those in the hardware chooser, associating Intel’s hardware method (HW_INTEL_RANDOM) with AM_HW_RANDOM, so that when AM_HW_RANDOM is called, Crypto-C turns to the hardware. For more information see “The Session Chooser” on page 7.

B_ALGORITHM_METHOD *SOFTWARE_CHOOSER[] = { &AM_HW_RANDOM,

(B_ALGORITHM_METHOD *)NULL_PTR };

1 6

R S A B S A F E C r y p t o - C I n t e l H a r d w a r e U s e r ’s G u i d e

Page 19 Page 21
Image 20
Page 19 Page 21
Contents Crypto-C Cryptographic Components for CCopyright Notice Contents Crypto-C Error Codes Intel Security Hardware Error Codes IndexIntel Hardware Security Features RSA Bsafe Crypto-C InterfaceHow This Book Is Organized Additional DocumentationOverview of a Crypto-C Hardware Application Six-Step Sequence Algorithm Methods Crypto-C Algorithm MethodsIntel Hardware Algorithm Methods Algorithm MethodsCreating the Software Chooser Session ChooserCreating the Session Chooser Creating the Hardware Chooser Creating the Session ChooserHardware Availability Hardware AvailabilityHardware Errors Arsaextendederror DefinitionsHardware Errors Using the Intel Random Number Generator Random NumbersUsing the Intel RNG Intel Random Number GeneratorWhitening Hardware Results Unavailability of HardwarePseudo-Random Number Generators PRNGs Create the Session Chooser Generating Random NumbersObtaining a Random Seed from Hardware Initialize the Random Object Create an Algorithm ObjectSet the Algorithm Object Destroy All Objects Update the Random ObjectGenerate Random Bytes Retrieving Hardware Error Codes Generating Random Numbers in SoftwareCreate an Algorithm Object Initialize the Random Algorithm Seed the Random ObjectGenerate Random Numbers Call would be identical in a software implementationCrypto-C Error Codes Page Intel Security Hardware Error Codes Page Redistributing the Intel Security Driver Redistributing via a Silent Install Redistributing the DriverFiles Installed File Location DescriptionUser Instructions for Installing the Intel Security Driver Redistributing the Driver via .inf FilesMicrosoft Windows \REDISTRIB \INF \WDM ISDWDM.INF ISECDRV.SYS ISDCAT.CAT Index

4.3 specifications

RSA Security 4.3 is a robust cybersecurity solution designed to help organizations protect their sensitive data and secure digital identities. This version builds upon the foundation of its predecessors, offering enhanced features and technologies that address the evolving landscape of security threats.

One of the main features of RSA Security 4.3 is its advanced multi-factor authentication (MFA) capabilities. MFA is essential for blocking unauthorized access, and this version supports a wide range of authentication methods, including biometrics, hardware tokens, and software-based solutions. This flexibility allows organizations to implement strong security measures tailored to their specific needs while providing a seamless user experience.

Another significant characteristic of RSA Security 4.3 is its risk-based authentication. This feature evaluates the context of each login attempt, considering factors such as device reputation, geographical location, and user behavior. By analyzing these parameters, the system can dynamically adjust authentication requirements in real-time, adding an extra layer of security for high-risk logins while ensuring low-friction access for trusted users.

The solution also emphasizes centralized management, which enables IT teams to monitor and manage security policies and user access across the organization efficiently. With a user-friendly dashboard, administrators can easily identify potential security vulnerabilities and respond promptly to any threats. This centralized approach enhances the overall security posture of the organization.

RSA Security 4.3 integrates advanced analytics and machine learning, allowing organizations to detect anomalies and trends in user behavior. These capabilities help identify potential threats before they escalate, offering valuable insights into security events. This proactive approach to threat detection is crucial in a landscape where cyber attacks are becoming increasingly sophisticated.

In conclusion, RSA Security 4.3 stands out with its multi-factor authentication, risk-based authentication, centralized management, and advanced analytics. These features make it an essential tool for organizations striving to safeguard their digital assets and maintain compliance in an ever-changing cybersecurity environment. With its focus on flexibility and user experience, RSA Security 4.3 provides a comprehensive solution that helps organizations navigate the complexities of modern security challenges effectively.
Top Page Image Contents