Manuals / RSA Security / Household Appliance / Home Security System

RSA Security 4.3 manual Generating Random Numbers, Obtaining a Random Seed from Hardware

Models: 4.3

1 38

Download 38 pages 55.71 Kb

Page 20

Generating Random Numbers

Generating Random Numbers

Generating Random Numbers

This example demonstrates how to use the Intel Hardware Random Number Generator to seed a software-based pseudo-random number generator (PRNG). To generate random numbers, do the following:

1.Use the Intel Random Number Generator to generate a random seed. In general, you should use a seed that is at least 256 bits long.

2.Seed a pseudo-random number generator with the random value that you retrieved in the first step. Once you have provided a seed, you can use the PRNG to generate your random numbers.

If you are already using a Crypto-C PRNG in your applications, making the change to use the Intel Random Number Generator is easy. All you have to do is gather the seed as in 1 above, then make some minor changes to your existing implementation so that it can use the seed supplied by the Intel RNG.

Obtaining a Random Seed from Hardware

First, use the Intel Random Number Generator to acquire a random seed. To do this, you can write a function, GenerateSeed, that will retrieve random bytes from hardware.

Step 0: Create the Session Chooser

Before you can create an application that can access the Intel Random Number Generator, you need to create the session chooser that associates Intel’s hardware method, HW_INTEL_RANDOM, with Crypto-C’s generic method for hardware random number generation, AM_HW_RANDOM. First set up your software and hardware choosers, then call B_CreateSessionChooser. This call will combine the elements of the software chooser with those in the hardware chooser, associating Intel’s hardware method (HW_INTEL_RANDOM) with AM_HW_RANDOM, so that when AM_HW_RANDOM is called, Crypto-C turns to the hardware. For more information see “The Session Chooser” on page 7.

B_ALGORITHM_METHOD *SOFTWARE_CHOOSER[] = { &AM_HW_RANDOM,

(B_ALGORITHM_METHOD *)NULL_PTR };

1 6	R S A B S A F E C r y p t o - C I n t e l H a r d w a r e U s e r ’s G u i d e

Image 20

RSA Security 4.3 manual Generating Random Numbers, Obtaining a Random Seed from Hardware, Create the Session Chooser

Contents

Cryptographic Components for C Crypto-CRSA BSAFE Intel Security Hardware User’s Guide001-19001-430-001-000 Copyright Notice1999 RSA SECURITY INC Contents Using Intel Hardware With Crypto-COverview ChapterCrypto-C Error Codes Intel Security Hardware Error CodesIndex Appendix A Appendix B Appendix CIntel Hardware Security Features OverviewRSA BSAFE Crypto-CInterface ChapterHow This Book Is Organized How This Book Is OrganizedAdditional Documentation Overview of a Crypto-CHardware Application Overview of a Crypto-CHardware ApplicationThe Six-StepSequence The Six-StepSequenceAlgorithm Methods Crypto-CAlgorithm MethodsUsing Intel Hardware With Crypto-C ChapterIntel Hardware Algorithm Methods Algorithm MethodsThe Session Chooser Creating the Session ChooserCreating the Software Chooser The Session ChooserCreating the Hardware Chooser Creating the Session ChooserThe Session Chooser if status = B CreateSessionChooserHardware Availability Hardware AvailabilityHardware Errors Hardware ErrorsA RSA EXTENDED ERROR errorCodeerrorMsg DefinitionsHardware Errors Chapter Using the Intel Random Number GeneratorRandom Numbers Using the Intel RNG The Intel Random Number GeneratorWhitening Hardware Results Unavailability of HardwarePseudo-RandomNumber Generators PRNGs Random NumbersGenerating Random Numbers Obtaining a Random Seed from HardwareStep 0 Create the Session Chooser Generating Random NumbersStep 1 Create an Algorithm Object Step 2 Set the Algorithm ObjectStep 3 Initialize the Random Object Generating Random NumbersStep 4 Update the Random Object Step 5 Generate Random BytesStep 6 Destroy All Objects Step 6a Destroy the Algorithm ObjectRetrieving Hardware Error Codes Generating Random Numbers in SoftwareStep 6b Free the Session Chooser Generating Random NumbersStep 1 Create an Algorithm Object Step 2 Set the Algorithm ObjectGenerating Random Numbers if status = B SetAlgorithmInfoGenerating Random Numbers Step 3 Initialize the Random AlgorithmStep 4 Seed the Random Object Step 5 Generate Random Numbers Step 6 Destroy all ObjectsGenerating Random Numbers breakCrypto-CError Codes Appendix APage Appendix B Intel Security Hardware Error CodesTable B-1 Intel Security Hardware Error Codes Page Redistributing the Intel Security Driver Appendix CRedistributing via a Silent Install setup -sRedistributing the Driver Redistributing the DriverFiles Installed Redistributing the DriverFile LocationRedistributing the Driver Redistributing the Driver via .inf FilesMicrosoft Windows NT Redistributing the Driver 4.Click Start Settings Control PanelMicrosoft Windows 4.Click Start Settings Control Panel Microsoft WindowsRedistributing the Driver 2.Log on to the target systemIndex