WO2021100385A1 - Random number communication system and random number communication method - Google Patents

Random number communication system and random number communication method Download PDF

Info

Publication number
WO2021100385A1
WO2021100385A1 PCT/JP2020/039249 JP2020039249W WO2021100385A1 WO 2021100385 A1 WO2021100385 A1 WO 2021100385A1 JP 2020039249 W JP2020039249 W JP 2020039249W WO 2021100385 A1 WO2021100385 A1 WO 2021100385A1
Authority
WO
WIPO (PCT)
Prior art keywords
random number
distribution
source
synthetic
random
Prior art date
Application number
PCT/JP2020/039249
Other languages
French (fr)
Japanese (ja)
Inventor
宏一良 石井
Original Assignee
株式会社村田製作所
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社村田製作所 filed Critical 株式会社村田製作所
Priority to JP2021558226A priority Critical patent/JPWO2021100385A1/ja
Publication of WO2021100385A1 publication Critical patent/WO2021100385A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F7/00Methods or arrangements for processing data by operating upon the order or content of the data handled
    • G06F7/58Random or pseudo-random number generators
    • GPHYSICS
    • G09EDUCATION; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
    • G09CCIPHERING OR DECIPHERING APPARATUS FOR CRYPTOGRAPHIC OR OTHER PURPOSES INVOLVING THE NEED FOR SECRECY
    • G09C1/00Apparatus or methods whereby a given sequence of signs, e.g. an intelligible text, is transformed into an unintelligible sequence of signs by transposing the signs or groups of signs or by replacing them by others according to a predetermined system

Definitions

  • the present invention relates to a random number communication system and a random number communication method for communicating random numbers generated by a random number source on the transmitting side to the receiving side.
  • a random number generator for a cryptographic application is required.
  • a random number generator for example, there is one disclosed in Patent Document 1.
  • This random number generator includes an analog noise generator and collects a sample of the random numbers generated by the analog noise generator. It then calculates at least one metric, such as the mean, standard deviation, and entropy of the collected random numbers, and compares that metric to the corresponding reference value. The random number generator adjusts the metric based on the comparison result so that the generated random numbers achieve an arbitrary distribution.
  • the present invention has been made to solve such a problem, and when a random number generated by a random number source on the transmitting side is communicated to the receiving side, even if the communication data is intercepted, it is used on the receiving side. It is an object of the present invention to provide a random number communication system and a random number communication method in which the distribution of random numbers to be generated is not known.
  • the present invention has a first random number source that generates random numbers having an arbitrary distribution, a second random number source that generates random numbers having a distribution different from the distribution of random numbers generated by the first random number source, and a first random number source. And a random number synthesizing means that synthesizes each random number generated by the second random number source, a DA conversion means that converts the synthesized random number synthesized by the random number synthesizing means from a digital value to an analog value, and a DA conversion means that converts it into an analog value.
  • a transmitting means for transmitting the combined random number signal, a receiving means for receiving the synthesized random number signal transmitted by the transmitting means, and an AD conversion means for converting the synthetic random number signal received by the receiving means from an analog value to a digital value.
  • a random number communication system including a random number distribution extraction means for extracting random numbers of an arbitrary distribution from a synthetic random number returned to a digital value by an AD conversion means is configured.
  • a step of causing the first random number source to generate random numbers having an arbitrary distribution a step of causing the second random number source to generate random numbers having a distribution different from the distribution of random numbers generated by the first random number source, and a first random number source and a first random number source.
  • a step of synthesizing each random number generated by the random number source by the random number synthesizing means a step of converting the synthesized random number synthesized by the random number synthesizing means from a digital value to an analog value by the DA conversion means, and an analog value by the DA conversion means.
  • a random number communication method including a step of converting from to a digital value and a step of extracting a random number of an arbitrary distribution from a synthetic random number returned to a digital value by an AD conversion means by a random number distribution extraction means is configured.
  • the random numbers generated by the first random number source and having an arbitrary distribution to be transmitted to the receiving side have a distribution different from the distribution of the random numbers generated by the second random number source and generated by the first random number source.
  • Random numbers and random number synthesis means The synthesized random number is converted from a digital value to an analog value by the DA conversion means, and is transmitted from the transmission means as a synthetic random number signal.
  • the synthetic random number signal transmitted from the transmitting means is received by the receiving means and returned from the analog value to the digital value by the AD conversion means. Then, a random number having an arbitrary distribution is extracted from the synthetic random numbers returned to the digital value by the random number distribution extraction means.
  • the synthetic random number signal has an arbitrary distribution of random numbers having a distribution different from that of the random number. Since the random numbers are synthesized and have a distribution different from the arbitrary distribution, the arbitrary random number distribution to be transmitted cannot be read by the third party. Further, since the synthetic random number signal is converted into an analog value by the DA conversion means and transmitted, the random number generation timing generated as a discrete digital value and the synthetic random number signal communicated as a non-discrete analog value are different. It does not synchronize with the timing of sampling on the receiving side. Therefore, time noise is added to the synthetic random numbers received and sampled on the receiving side.
  • a third party who intercepts the synthetic random number signal during communication will sample the synthetic random number at a timing that does not match the sampling timing on the receiving side. Therefore, since the synthetic random number sampled by the third party has time noise different from that sampled on the receiving side, the confidentiality of communication in the network of the synthetic random number signal is increased.
  • the distribution of the random number used on the receiving side can be found even if the communication data is intercepted. It is possible to provide a random number communication system and a random number communication method without a device.
  • FIG. 1 It is a block diagram which shows the functional structure of the random number communication system by one Embodiment of this invention.
  • (A) is a waveform diagram of a random number distribution schematically showing the process of synthesizing random numbers performed by the random number synthesizing means constituting the random number communication system according to one embodiment
  • (b) is a waveform diagram of a random number distribution according to one embodiment. It is a waveform diagram of the random number distribution which schematically represents the random number extraction process performed by the random number distribution extraction means.
  • (A) is a flowchart of processing performed on the transmitting side by the random number communication method according to the embodiment, and (b) is a flowchart of processing performed on the receiving side.
  • (A) is a discrete composite random number signal of digital values when synthesized by the random number synthesis means in the random number communication system and the random number communication method according to one embodiment, and (b) is analog-converted by the DA conversion means. A non-discrete composite random number signal of an analog value at the time of transmission is shown, and (c) is a partially enlarged view for explaining the timing when the composite random number signal of an analog value is sampled.
  • FIG. 1 is a block diagram showing a functional configuration of a random number communication system 1 according to an embodiment of the present invention.
  • a random number is generated by the random number generator 2 on the transmitting side, and the generated random number is transmitted to the host (HOST) 3 on the receiving side connected to the random number generator 2 via a network.
  • HOST 3 is a personal computer (PC), a microcomputer (commonly known as a microcomputer), or the like.
  • data is encrypted using the random numbers received from the random number generator 2, and the encrypted data is transmitted to a predetermined destination.
  • the random number generator 2 includes a first random number source 4, a second random number source 5, a random number synthesis means 6, a DA conversion means 7, and a transmission means 8.
  • the HOST 3 includes a receiving means 11, an AD conversion means 12, a random number distribution extracting means 13, a key generating means 14, an encryption means 15, a transmitting means 16, and a decoding means 17.
  • Each of the random number generator 2 and HOST 3 is configured as an IC module, and includes a CPU (central processing unit), a ROM (read-only memory), and a RAM (read / write memory).
  • the CPU controls each part according to the computer program stored in the ROM.
  • the first random number source 4, the second random number source 5, and the random number synthesizing means 6 in the random number generator 2, the random number distribution extracting means 13, the key generating means 14, the encryption means 15, the decoding means 17, and the like in HOST 3 are It is realized by software control according to the computer program of this CPU. However, these may be configured to be realized by hardware by an electronic circuit instead of software control of the CPU.
  • operation parameters and various tables are stored in the ROM. Parameters and the like used in CPU control processing and the like are temporarily stored in the RAM, and are used as a storage work area.
  • the first random number source 4 in the random number generator 2 on the transmitting side generates random numbers having an arbitrary distribution as the first random number.
  • the second random number source 5 generates a random number having a distribution different from the distribution of the random numbers generated by the first random number source 4 as the second random number.
  • Random number generation by the first random number source 4 and the second random number source 5, regardless of hardware or software, is a physical random number source called QRNG (quantum random number generator) or TRNG (intrinsic random number generator), especially light. It is preferable to use shot noise or the like. It is known that in a random number source such as QRNG (quantum random number generator), the time and the probability of appearance of the value are independent, and the relationship with other values is also independent. In addition, the entropy (physical quantity representing randomness) of the generated random number information is high and difficult to predict. In addition, the values of the generated random numbers are quantum mechanically discrete.
  • the random number synthesizing means 6 synthesizes each random number generated by the first random number source 4 and the second random number source 5. For example, as shown in FIG. 2A, assuming that the distribution of the first random number generated by the first random number source 4 is the Gaussian distribution A and the distribution of the second random number generated by the second random number source 5 is the Gaussian distribution B.
  • the random number synthesizing means 6 synthesizes each random number into a random number having a Gaussian distribution C having a shape obtained by adding the Gaussian distribution A and the Gaussian distribution B and averaging them.
  • the conversion of the random number distribution at this time may be performed by standardization conversion.
  • the DA conversion means 7 converts the random numbers synthesized by the random number synthesis means 6 from digital values to analog values.
  • the transmission means 8 transmits a synthetic random number signal converted into an analog value by the DA conversion means 7, for example, the synthetic random number signal s1 shown in FIG. 1 to the network.
  • the receiving means 11 in HOST 3 on the receiving side receives the synthetic random number signal s1 transmitted by the transmitting means 8 via the network.
  • the AD conversion means 12 converts the synthetic random number signal s1 received by the receiving means 11 from an analog value to a digital value, and outputs the combined random number signal s1 to the random number distribution extraction means 13.
  • the AD conversion means 12 directly transfers the composite random number signal s1 converted from an analog value to a digital value to the random number distribution extraction means 13 by hardware without using a program instruction or the like. To do. This DMA transfer is performed asynchronously with the generation timing of the composite random number of the digital value, but may be performed synchronously.
  • the random number distribution extraction means 13 extracts random numbers having an arbitrary distribution from the synthetic random numbers returned to digital values by the AD conversion means 12. For example, as shown in FIG. 2B, the second random number of the Gaussian distribution B generated by the second random number source 5 is subtracted from the random number of the Gaussian distribution C synthesized by the random number synthesizing means 6, and the first random number source is obtained. The first random number of the Gaussian distribution A generated in 4 is extracted.
  • the key generation means 14 generates an encryption key based on the random numbers of the distribution extracted by the random number distribution extraction means 13.
  • the encryption means 15 encrypts the data to be transmitted to a predetermined destination by using the encryption key generated by the key generation means 14.
  • the transmission means 16 transmits the data D1 encrypted by the encryption means 15 to a predetermined destination.
  • the HOST 3 receives the encrypted data D2 received from a predetermined destination by the receiving means 11, and decrypts the encrypted data by the decrypting means 17 using the encryption key generated by the key generating means 14. ..
  • FIG. 3 is a flowchart showing a random number communication method according to an embodiment of the present invention performed by using the random number communication system 1 having the above configuration, and FIG. 3A is performed by a random number generator 2 on the transmitting side.
  • the flowchart of the process, FIG. 3B is a flowchart of the process performed in HOST 3 on the receiving side.
  • the first random number is first generated by the first random number source 4 (see step (hereinafter referred to as S) 101), and the generated random numbers are generated. Is converted into a uniform distribution by the first random number source 4 (see S102). After that, the first random number of uniform distribution is converted into a random number of arbitrary distribution, for example, the first random number of Gaussian distribution A suitable for the encrypted data used at a predetermined destination shown in FIG. 2, by the first random number source 4. (See S103). Next, the second random number source 5 generates, for example, the second random number of the Gaussian distribution B shown in FIG.
  • the random number synthesizing means 6 generates the random number of the Gaussian distribution C shown in FIG. 2, for example, as a synthesis function. Is randomized as (see S105).
  • the synthetic random number generated by the random number synthesis means 6 is analog-converted by the DA conversion means 7, and is transmitted to the network as a composite random number signal s1 of an analog value (see S106).
  • the composite random number signal s1 of the analog value transmitted from the random number generator 2 is received by the receiving means 11 and digitally converted by the AD conversion means 12 (S201). reference).
  • the composite random number signal s1 of the digital value when synthesized by the random number synthesis means 6 on the transmitting side has discrete values as shown by the dotted line in the figure. ..
  • Such a discrete synthetic random number signal s1 is sent to HOST3 as an analog value which is a non-discrete continuous value as shown by a solid line in FIG. 4 (b).
  • the analog value of the synthetic random number signal s1 is set at a timing t that is not synchronized with the timing at which the random number synthesis means 6 generates the synthetic random number, that is, at a timing t at a fixed interval in which the synthetic random number signal s1 is transferred by DMA. It is sampled and converted to a digital value.
  • This sampling timing t does not coincide with the timing shown by the dotted line in which the synthesized random numbers are discretely generated by the random number synthesizing means 6, as shown in a partially enlarged state in FIG. 4 (c).
  • This timing mismatch is multiplied by the sampled analog value as time noise, and becomes quantization noise when the synthetic random number signal s1 is quantized into a digital value.
  • the CPU removes the above-mentioned quantization noise from the synthetic random number digitally converted by the AD conversion means 12 (see S202).
  • the random number distribution extraction means 13 removes the unnecessary second random number of the Gaussian distribution B as shown in FIG. 2B, and extracts the first random number of the necessary Gaussian distribution A (see S203). ).
  • an encryption key is generated by the extracted first random number and stored in the internal memory (see S204), and the data stored in the internal memory is encrypted by the generated encryption key (see S205).
  • the encrypted data D1 is transmitted to a predetermined destination by the transmission means 16 (see S206).
  • the random number generator 2 has an arbitrary distribution A generated by the first random number source 4 and desired to be transmitted to the receiving side.
  • the first random number is synthesized by the random number synthesizing means 6 and the second random number of the Gaussian distribution B, which is different from the Gaussian distribution A of the first random number generated by the first random number source 4, which is generated by the second random number source 5.
  • the synthesized random number is converted from a digital value to an analog value by the DA conversion means 7, and is transmitted from the transmission means 8 as a synthetic random number signal s1.
  • the synthetic random number signal s1 transmitted from the transmitting means 8 is received by the receiving means 11 in HOST 3, and is returned from the analog value to the digital value by the AD conversion means 12. Then, a random number having an arbitrary Gaussian distribution A is extracted by the random number distribution extraction means 13 from the synthetic random number signal s1 returned to the digital value.
  • HOST3 can determine that it has been hacked by a third party and stop sampling the sent synthetic random number signal s1.
  • the synthetic random number signal s1 is arbitrary.
  • the first random number of the Gaussian distribution A is combined with the second random number of the Gaussian distribution B that is different from that distribution, and the random number distribution of the Gaussian distribution C that is different from the arbitrary Gaussian distribution A is obtained. Any Gaussian distribution A cannot be read by the third party.
  • the synthetic random number signal s1 is converted into an analog value by the DA conversion means 7 and transmitted, the random number generation timing generated as a discrete digital value as shown in FIG. 4A and FIG. 4 ( As shown in b), the synthetic random number signal s1 communicated as a non-discrete analog value is not synchronized with the timing t sampled on the receiving side. Therefore, as shown in FIG. 4C, time noise is added to the synthetic random number received and sampled by HOST 3 on the receiving side. Further, a third party who intercepts the synthetic random number signal s1 in the middle of communication on the network will sample the synthetic random number at a timing that does not match the sampling timing of HOST3. Therefore, since the synthetic random number sampled by the third party has a time noise different from that sampled by HOST3, the confidentiality of communication in the network of the synthetic random number signal s1 is enhanced.
  • the first random number can be transmitted from the random number generator 2 to the HOST 3 as the random number source of the HOST 3 while hiding the characteristics of the first random number. ..
  • the safety can be enhanced by converting the random number distribution into a random number distribution that is difficult to predict and sending the first random number from the random number generator 2 to the HOST 3. This allows the HOST3 side to use good quality random numbers without high computational resources.
  • the first random number generated by the first random number source 4 on the transmitting side is communicated to the receiving side, even if the communication data is intercepted, the first random number used in HOST 3 is used. It is possible to provide a random number communication system 1 and a random number communication method in which the distribution of random numbers is not known.
  • the AD conversion means 12 performs AD conversion because the synthetic random number converted from the analog value to the digital value is DMA-transferred to the random number distribution extraction means 13.
  • the synthetic random number converted into a digital value by the means 12 can be automatically and periodically output to the random number distribution extraction means 13. Therefore, it is possible to facilitate the output of the synthetic random number from the AD conversion means 12 to the random number distribution extraction means 13.
  • the transmission means 8 of the random number generator 2 may be configured to constantly transmit the synthetic random number signal s1 converted into an analog value by the DA conversion means 7. According to this configuration, a third party who intercepts the communication data transmitted from the transmission means 8 must store and analyze a large amount of analog value communication data, and the memory capacity of the storage destination is determined. The limits make it difficult to attack.
  • the random number synthesizing means 6 synthesizes a random number of an arbitrary Gaussian distribution A with a random number of one type of Gaussian distribution B different from the distribution.
  • the random numbers of other distributions having different distributions, which are combined with the random numbers of an arbitrary Gaussian distribution A are not limited to one type, and the random numbers of a plurality of types such as two types or three types are combined. May be good.
  • the random number distribution extraction means 13 subtracts the random numbers of the synthesized plurality of types of distributions to extract the random numbers of an arbitrary Gaussian distribution A.
  • the first random number source 4 converts the first random number into a uniformly distributed random number in S102 of FIG. 3A has been described. However, since it is converted into a random number having an arbitrary distribution in S103 thereafter, it may be converted into a random number having another distribution such as a Poisson distribution in S102.
  • HOST3 can perform LWE encryption (Learning With Errors) and OTP (One Time Pad) encryption more difficultly to guess than before, and also an OTP key. Can be generated more difficult to guess than before.
  • LWE encryption Learning With Errors
  • OTP One Time Pad
  • the lattice points are expressed as the sum of the integer coefficient linear combination of the basis vector and the error in lattice-based cryptography, etc.
  • the random number sent by the conventional system and method is used as the noise data of this coefficient and the error, the LWE problem Is easily solved.
  • Random number communication system 2 ... Random number generator 3 ... Host (HOST) 4 ... 1st random number source 5 ... 2nd random number source 6 ... Random number synthesis means 7 ... DA conversion means 8, 16 ... Transmission means 11 ... Reception means 12 ... AD conversion means 13 ... Random number distribution extraction means 14 ... Key generation means 15 ... Encryption means 17 ... Decryption means

Abstract

Provided are a random number communication system and a random number communication method that, when a random number generated by a random number source on a transmission side is communicated to a reception side, prevent the discovery of a random number distribution used by the reception side, even if the communication data is intercepted. A random number combination means 6 combines random numbers generated by a first random number source 4 and a second random number source 5. A D/A conversion means 7 converts the combined random number from the random number combination means 6 from a digital value to an analog value. A transmission means 8 transmits a combined random number signal s1 converted to an analog value by the D/A conversion means. A reception means 11 at a HOST 3 of the reception side receives the combined random number signal s1 transmitted by the transmission means 8. An A/D conversion means 12 converts the received combined random number signal s1 from an analog value to a digital value, and outputs the digital value to a random number distribution extraction means 13. The random number distribution extraction means 13 extracts an arbitrary distribution of random numbers from the combined random number signal s1 which was returned to a digital value.

Description

乱数通信システムおよび乱数通信方法Random number communication system and random number communication method
 本発明は、送信側における乱数源で発生する乱数を受信側へ通信する乱数通信システムおよび乱数通信方法に関するものである。 The present invention relates to a random number communication system and a random number communication method for communicating random numbers generated by a random number source on the transmitting side to the receiving side.
 無線通信端末または装置においては、例えば暗号アプリケーション用の乱数発生装置が必要とされる。従来、このような乱数発生装置として、例えば、特許文献1に開示されたものがある。この乱数発生装置は、アナログ雑音発生器を備え、アナログ雑音発生器が発生した乱数のサンプルを収集する。そして、収集した乱数の平均値、標準偏差およびエントロピーのような少なくとも1つのメトリックを計算し、そのメトリックを対応する基準値と比較する。乱数発生装置は、その比較結果に基づき、発生した乱数が任意の分布を達成するように、メトリックを調整する。 In a wireless communication terminal or device, for example, a random number generator for a cryptographic application is required. Conventionally, as such a random number generator, for example, there is one disclosed in Patent Document 1. This random number generator includes an analog noise generator and collects a sample of the random numbers generated by the analog noise generator. It then calculates at least one metric, such as the mean, standard deviation, and entropy of the collected random numbers, and compares that metric to the corresponding reference value. The random number generator adjusts the metric based on the comparison result so that the generated random numbers achieve an arbitrary distribution.
特開2008-507768号公報Japanese Unexamined Patent Publication No. 2008-507768
 しかしながら、特許文献1に開示されたような従来の乱数発生装置により任意の分布にされた乱数を送信側から受信側へそのまま送信してしまうと、通信データを傍受する第三者により、時間をかけることで、乱数発生装置が発生する乱数の平均値や標準偏差といった分散が判明してしまう。このため、従来の乱数発生装置により発生させられる乱数の分布は、時間をかけることで必ず第三者に分かってしまう。 However, if random numbers distributed arbitrarily by a conventional random number generator as disclosed in Patent Document 1 are transmitted as they are from the transmitting side to the receiving side, a third party who intercepts the communication data takes time. By multiplying, the variance such as the average value and standard deviation of the random numbers generated by the random number generator becomes clear. Therefore, the distribution of random numbers generated by the conventional random number generator is surely known to a third party over time.
 本発明は、このような課題を解消するためになされたもので、送信側における乱数源で発生する乱数が受信側へ通信される際に、その通信データが傍受されても、受信側で使用される乱数の分布が判明することの無い乱数通信システムおよび乱数通信方法を提供することを目的とする。 The present invention has been made to solve such a problem, and when a random number generated by a random number source on the transmitting side is communicated to the receiving side, even if the communication data is intercepted, it is used on the receiving side. It is an object of the present invention to provide a random number communication system and a random number communication method in which the distribution of random numbers to be generated is not known.
 このために、本発明は、任意の分布の乱数を生成する第1乱数源と、第1乱数源の生成する乱数の分布と異なる分布の乱数を生成する第2乱数源と、第1乱数源および第2乱数源で生成される各乱数を合成する乱数合成手段と、乱数合成手段で合成された合成乱数をデジタル値からアナログ値に変換するDA変換手段と、DA変換手段でアナログ値に変換された合成乱数信号を送信する送信手段と、送信手段で送信された合成乱数信号を受信する受信手段と、受信手段で受信された合成乱数信号をアナログ値からデジタル値に変換するAD変換手段と、AD変換手段でデジタル値に戻された合成乱数から任意の分布の乱数を抽出する乱数分布抽出手段とを備える乱数通信システムを構成した。 Therefore, the present invention has a first random number source that generates random numbers having an arbitrary distribution, a second random number source that generates random numbers having a distribution different from the distribution of random numbers generated by the first random number source, and a first random number source. And a random number synthesizing means that synthesizes each random number generated by the second random number source, a DA conversion means that converts the synthesized random number synthesized by the random number synthesizing means from a digital value to an analog value, and a DA conversion means that converts it into an analog value. A transmitting means for transmitting the combined random number signal, a receiving means for receiving the synthesized random number signal transmitted by the transmitting means, and an AD conversion means for converting the synthetic random number signal received by the receiving means from an analog value to a digital value. , A random number communication system including a random number distribution extraction means for extracting random numbers of an arbitrary distribution from a synthetic random number returned to a digital value by an AD conversion means is configured.
 また、第1乱数源に任意の分布の乱数を生成させるステップと、第1乱数源が生成する乱数の分布と異なる分布の乱数を第2乱数源に生成させるステップと、第1乱数源および第2乱数源で生成される各乱数を乱数合成手段によって合成するステップと、乱数合成手段で合成された合成乱数をDA変換手段によってデジタル値からアナログ値に変換するステップと、DA変換手段でアナログ値に変換された合成乱数信号を送信手段によって送信するステップと、送信手段で送信された合成乱数信号を受信手段によって受信するステップと、受信手段で受信された合成乱数信号をAD変換手段によってアナログ値からデジタル値に変換するステップと、AD変換手段でデジタル値に戻された合成乱数から任意の分布の乱数を乱数分布抽出手段によって抽出するステップとを備える乱数通信方法を構成した。 Further, a step of causing the first random number source to generate random numbers having an arbitrary distribution, a step of causing the second random number source to generate random numbers having a distribution different from the distribution of random numbers generated by the first random number source, and a first random number source and a first random number source. 2 A step of synthesizing each random number generated by the random number source by the random number synthesizing means, a step of converting the synthesized random number synthesized by the random number synthesizing means from a digital value to an analog value by the DA conversion means, and an analog value by the DA conversion means. The step of transmitting the synthetic random number signal converted to the above by the transmitting means, the step of receiving the synthetic random number signal transmitted by the transmitting means by the receiving means, and the step of receiving the synthetic random number signal received by the receiving means by the AD conversion means as an analog value. A random number communication method including a step of converting from to a digital value and a step of extracting a random number of an arbitrary distribution from a synthetic random number returned to a digital value by an AD conversion means by a random number distribution extraction means is configured.
 本構成によれば、第1乱数源で生成される、受信側へ送信したい任意の分布を有する乱数は、第2乱数源で生成される、第1乱数源が生成する乱数の分布と異なる分布の乱数と乱数合成手段によって合成される。合成された乱数は、DA変換手段によってデジタル値からアナログ値に変換されて、合成乱数信号として、送信手段から送信される。送信手段から送信される合成乱数信号は、受信手段によって受信され、AD変換手段によってアナログ値からデジタル値に戻される。そして、デジタル値に戻された合成乱数から、乱数分布抽出手段によって任意の分布の乱数が抽出される。 According to this configuration, the random numbers generated by the first random number source and having an arbitrary distribution to be transmitted to the receiving side have a distribution different from the distribution of the random numbers generated by the second random number source and generated by the first random number source. Random numbers and random number synthesis means. The synthesized random number is converted from a digital value to an analog value by the DA conversion means, and is transmitted from the transmission means as a synthetic random number signal. The synthetic random number signal transmitted from the transmitting means is received by the receiving means and returned from the analog value to the digital value by the AD conversion means. Then, a random number having an arbitrary distribution is extracted from the synthetic random numbers returned to the digital value by the random number distribution extraction means.
 したがって、送信手段から送信されて受信手段に受信されるまでの通信途中において、合成乱数信号が第三者に傍受されても、合成乱数信号は、任意の分布の乱数にその分布と異なる分布の乱数が合成されて、任意の分布と異なる分布をしているため、送信したい任意の乱数分布はその第三者に読み取られることはない。また、合成乱数信号は、DA変換手段でアナログ値に変換されて送信されるため、離散的なデジタル値として生成される乱数生成タイミングと、非離散的なアナログ値として通信される合成乱数信号が受信側でサンプリングされるタイミングとは、同調しない。したがって、受信側で受信されてサンプリングされる合成乱数には時間ノイズが乗る。また、通信途中における合成乱数信号を傍受する第三者は、受信側のサンプリングタイミングに一致しないタイミングで合成乱数をサンプリングすることとなる。よって、第三者がサンプリングする合成乱数には、受信側でサンプリングされるものと異なる時間ノイズが乗るため、合成乱数信号のネットワークにおける通信の秘匿性は高まる。 Therefore, even if the synthetic random number signal is intercepted by a third party during the communication from the transmission means to the reception means, the synthetic random number signal has an arbitrary distribution of random numbers having a distribution different from that of the random number. Since the random numbers are synthesized and have a distribution different from the arbitrary distribution, the arbitrary random number distribution to be transmitted cannot be read by the third party. Further, since the synthetic random number signal is converted into an analog value by the DA conversion means and transmitted, the random number generation timing generated as a discrete digital value and the synthetic random number signal communicated as a non-discrete analog value are different. It does not synchronize with the timing of sampling on the receiving side. Therefore, time noise is added to the synthetic random numbers received and sampled on the receiving side. Further, a third party who intercepts the synthetic random number signal during communication will sample the synthetic random number at a timing that does not match the sampling timing on the receiving side. Therefore, since the synthetic random number sampled by the third party has time noise different from that sampled on the receiving side, the confidentiality of communication in the network of the synthetic random number signal is increased.
 このため、本発明によれば、送信側における乱数源で発生する乱数が受信側へ通信される際に、その通信データが傍受されても、受信側で使用される乱数の分布が判明することの無い乱数通信システムおよび乱数通信方法を提供することができる。 Therefore, according to the present invention, when a random number generated by a random number source on the transmitting side is communicated to the receiving side, the distribution of the random number used on the receiving side can be found even if the communication data is intercepted. It is possible to provide a random number communication system and a random number communication method without a device.
本発明の一実施形態による乱数通信システムの機能構成を示すブロック図である。It is a block diagram which shows the functional structure of the random number communication system by one Embodiment of this invention. (a)は、一実施形態による乱数通信システムを構成する乱数合成手段で行われる乱数の合成過程を模式的に表わす乱数分布の波形図、(b)は、一実施形態による乱数通信システムを構成する乱数分布抽出手段で行われる乱数の抽出過程を模式的に表わす乱数分布の波形図である。(A) is a waveform diagram of a random number distribution schematically showing the process of synthesizing random numbers performed by the random number synthesizing means constituting the random number communication system according to one embodiment, and (b) is a waveform diagram of a random number distribution according to one embodiment. It is a waveform diagram of the random number distribution which schematically represents the random number extraction process performed by the random number distribution extraction means. (a)は、一実施形態による乱数通信方法によって送信側で行われる処理のフローチャート、(b)は、受信側で行われる処理のフローチャートである。(A) is a flowchart of processing performed on the transmitting side by the random number communication method according to the embodiment, and (b) is a flowchart of processing performed on the receiving side. (a)は、一実施形態による乱数通信システムおよび乱数通信方法において、乱数合成手段で合成された際のデジタル値の離散的な合成乱数信号、(b)は、DA変換手段によってアナログ変換されて送信される際のアナログ値の非離散的な合成乱数信号を示し、(c)は、アナログ値の合成乱数信号がサンプリングされる際のタイミングを説明するための一部拡大図である。(A) is a discrete composite random number signal of digital values when synthesized by the random number synthesis means in the random number communication system and the random number communication method according to one embodiment, and (b) is analog-converted by the DA conversion means. A non-discrete composite random number signal of an analog value at the time of transmission is shown, and (c) is a partially enlarged view for explaining the timing when the composite random number signal of an analog value is sampled.
 次に、本発明による乱数通信システムおよび乱数通信方法を実施するための形態について、説明する。 Next, a mode for implementing the random number communication system and the random number communication method according to the present invention will be described.
 図1は、本発明の一実施形態による乱数通信システム1の機能構成を示すブロック図である。 FIG. 1 is a block diagram showing a functional configuration of a random number communication system 1 according to an embodiment of the present invention.
 乱数通信システム1では、送信側の乱数発生器2で乱数が生成され、生成された乱数は、乱数発生器2とネットワークで接続される受信側のホスト(HOST)3へ送信される。HOST3はパーソナルコンピュータ(PC)やマイクロコンピュータ(通称マイコン)などである。HOST3では乱数発生器2から受信した乱数を用いてデータの暗号化等が行われ、暗号化データが所定の送信先へ送信される。 In the random number communication system 1, a random number is generated by the random number generator 2 on the transmitting side, and the generated random number is transmitted to the host (HOST) 3 on the receiving side connected to the random number generator 2 via a network. HOST 3 is a personal computer (PC), a microcomputer (commonly known as a microcomputer), or the like. In HOST 3, data is encrypted using the random numbers received from the random number generator 2, and the encrypted data is transmitted to a predetermined destination.
 乱数発生器2は、第1乱数源4、第2乱数源5、乱数合成手段6、DA変換手段7および送信手段8を備える。また、HOST3は、受信手段11、AD変換手段12、乱数分布抽出手段13、鍵生成手段14、暗号化手段15、送信手段16および復号化手段17を備える。乱数発生器2およびHOST3はそれぞれICモジュールとして構成され、CPU(中央演算処理装置)やROM(読み出し専用メモリ)およびRAM(読み書き可能メモリ)を備える。 The random number generator 2 includes a first random number source 4, a second random number source 5, a random number synthesis means 6, a DA conversion means 7, and a transmission means 8. Further, the HOST 3 includes a receiving means 11, an AD conversion means 12, a random number distribution extracting means 13, a key generating means 14, an encryption means 15, a transmitting means 16, and a decoding means 17. Each of the random number generator 2 and HOST 3 is configured as an IC module, and includes a CPU (central processing unit), a ROM (read-only memory), and a RAM (read / write memory).
 CPUは、ROMに記憶されたコンピュータプログラムにしたがって各部の制御を行う。乱数発生器2における第1乱数源4、第2乱数源5、および乱数合成手段6や、HOST3における乱数分布抽出手段13、鍵生成手段14、暗号化手段15、および復号化手段17などは、このCPUのコンピュータプログラムにしたがったソフトウエア制御によって実現される。しかし、これらはCPUのソフトウエア制御に代えて、電子回路によるハードウエアによって実現するように、構成してもよい。ROMには、コンピュータプログラムの他、演算パラメータや各種のテーブルなどが格納される。RAMには、CPUの制御処理などで使用されるパラメータなどが一時的に記憶され、記憶作業領域として使用される。 The CPU controls each part according to the computer program stored in the ROM. The first random number source 4, the second random number source 5, and the random number synthesizing means 6 in the random number generator 2, the random number distribution extracting means 13, the key generating means 14, the encryption means 15, the decoding means 17, and the like in HOST 3 are It is realized by software control according to the computer program of this CPU. However, these may be configured to be realized by hardware by an electronic circuit instead of software control of the CPU. In addition to computer programs, operation parameters and various tables are stored in the ROM. Parameters and the like used in CPU control processing and the like are temporarily stored in the RAM, and are used as a storage work area.
 送信側の乱数発生器2における第1乱数源4は、任意の分布の乱数を第1乱数として生成する。第2乱数源5は、第1乱数源4の生成する乱数の分布と異なる分布の乱数を第2乱数として生成する。第1乱数源4および第2乱数源5による乱数生成は、ハードウエアかソフトウエアかを問わないが、QRNG(量子乱数発生器)やTRNG(真性乱数発生器)と呼ばれる物理乱数源、特に光ショットノイズなどを用いて行うのが好ましい。QRNG(量子乱数発生器)等の乱数源においては、時間と値の出現確率において独立であり、他の値との関連性も独立であることが知られている。また、生成される乱数情報のエントロピー(乱雑さを表わす物理量)は高く、予想しにくい。また、生成される乱数の値は量子力学的に離散的になる。 The first random number source 4 in the random number generator 2 on the transmitting side generates random numbers having an arbitrary distribution as the first random number. The second random number source 5 generates a random number having a distribution different from the distribution of the random numbers generated by the first random number source 4 as the second random number. Random number generation by the first random number source 4 and the second random number source 5, regardless of hardware or software, is a physical random number source called QRNG (quantum random number generator) or TRNG (intrinsic random number generator), especially light. It is preferable to use shot noise or the like. It is known that in a random number source such as QRNG (quantum random number generator), the time and the probability of appearance of the value are independent, and the relationship with other values is also independent. In addition, the entropy (physical quantity representing randomness) of the generated random number information is high and difficult to predict. In addition, the values of the generated random numbers are quantum mechanically discrete.
 乱数合成手段6は、第1乱数源4および第2乱数源5で生成される各乱数を合成する。例えば、図2(a)に示すように、第1乱数源4が生成する第1乱数の分布をガウス分布A、第2乱数源5が生成する第2乱数の分布をガウス分布Bとすると、乱数合成手段6は、ガウス分布Aとガウス分布Bとを足し合せた、それらを平均化したような形状のガウス分布Cを持つ乱数に、各乱数を合成する。なお、この際の乱数分布の変換は標準化変換によって行ってもよい。DA変換手段7は、乱数合成手段6で合成された乱数をデジタル値からアナログ値に変換する。送信手段8は、DA変換手段7でアナログ値に変換された合成乱数信号、例えば図1に示す合成乱数信号s1をネットワークへ送信する。 The random number synthesizing means 6 synthesizes each random number generated by the first random number source 4 and the second random number source 5. For example, as shown in FIG. 2A, assuming that the distribution of the first random number generated by the first random number source 4 is the Gaussian distribution A and the distribution of the second random number generated by the second random number source 5 is the Gaussian distribution B. The random number synthesizing means 6 synthesizes each random number into a random number having a Gaussian distribution C having a shape obtained by adding the Gaussian distribution A and the Gaussian distribution B and averaging them. The conversion of the random number distribution at this time may be performed by standardization conversion. The DA conversion means 7 converts the random numbers synthesized by the random number synthesis means 6 from digital values to analog values. The transmission means 8 transmits a synthetic random number signal converted into an analog value by the DA conversion means 7, for example, the synthetic random number signal s1 shown in FIG. 1 to the network.
 受信側のHOST3における受信手段11は、送信手段8で送信された合成乱数信号s1をネットワークを介して受信する。AD変換手段12は、受信手段11で受信された合成乱数信号s1をアナログ値からデジタル値に変換し、乱数分布抽出手段13へ出力する。本実施形態では、AD変換手段12は、アナログ値からデジタル値に変換した合成乱数信号s1を乱数分布抽出手段13へ、プログラムの命令などを介さず、ハードウエアによって直接DMA(Direct Memory Access)転送する。このDMA転送は、デジタル値の合成乱数の生成タイミングと非同期に行われるが、同期して行われてもよい。乱数分布抽出手段13は、AD変換手段12でデジタル値に戻された合成乱数から、任意の分布の乱数を抽出する。例えば、図2(b)に示すように、乱数合成手段6で合成されたガウス分布Cの乱数から第2乱数源5で生成されたガウス分布Bの第2乱数を減算し、第1乱数源4で生成されたガウス分布Aの第1乱数を抽出する。 The receiving means 11 in HOST 3 on the receiving side receives the synthetic random number signal s1 transmitted by the transmitting means 8 via the network. The AD conversion means 12 converts the synthetic random number signal s1 received by the receiving means 11 from an analog value to a digital value, and outputs the combined random number signal s1 to the random number distribution extraction means 13. In the present embodiment, the AD conversion means 12 directly transfers the composite random number signal s1 converted from an analog value to a digital value to the random number distribution extraction means 13 by hardware without using a program instruction or the like. To do. This DMA transfer is performed asynchronously with the generation timing of the composite random number of the digital value, but may be performed synchronously. The random number distribution extraction means 13 extracts random numbers having an arbitrary distribution from the synthetic random numbers returned to digital values by the AD conversion means 12. For example, as shown in FIG. 2B, the second random number of the Gaussian distribution B generated by the second random number source 5 is subtracted from the random number of the Gaussian distribution C synthesized by the random number synthesizing means 6, and the first random number source is obtained. The first random number of the Gaussian distribution A generated in 4 is extracted.
 鍵生成手段14は、乱数分布抽出手段13で抽出された分布の乱数を基に暗号鍵を生成する。暗号化手段15は、鍵生成手段14が生成した暗号鍵を使って、所定の送信先へ送信するデータの暗号化を行う。送信手段16は、暗号化手段15によって暗号化されたデータD1を所定の送信先へ送信する。また、HOST3は、所定の送信先から受信される暗号化データD2を受信手段11で受信し、鍵生成手段14が生成した暗号鍵を使って、復号化手段17によって暗号化データを復号化する。 The key generation means 14 generates an encryption key based on the random numbers of the distribution extracted by the random number distribution extraction means 13. The encryption means 15 encrypts the data to be transmitted to a predetermined destination by using the encryption key generated by the key generation means 14. The transmission means 16 transmits the data D1 encrypted by the encryption means 15 to a predetermined destination. Further, the HOST 3 receives the encrypted data D2 received from a predetermined destination by the receiving means 11, and decrypts the encrypted data by the decrypting means 17 using the encryption key generated by the key generating means 14. ..
 図3は、上記の構成をした乱数通信システム1を用いて行われる本発明の一実施形態による乱数通信方法を示すフローチャートであり、同図(a)は送信側の乱数発生器2で行われる処理のフローチャート、同図(b)は受信側のHOST3で行われる処理のフローチャートである。 FIG. 3 is a flowchart showing a random number communication method according to an embodiment of the present invention performed by using the random number communication system 1 having the above configuration, and FIG. 3A is performed by a random number generator 2 on the transmitting side. The flowchart of the process, FIG. 3B is a flowchart of the process performed in HOST 3 on the receiving side.
 送信側の乱数発生器2では、同図(a)に示すように、まず、第1乱数源4によって第1乱数が生成され(ステップ(以下、Sと記す)101参照)、生成される乱数は第1乱数源4によって一様分布に変換される(S102参照)。その後、一様分布の第1乱数は任意の分布の乱数、例えば図2に示す、所定の送信先で使われる暗号データに適したガウス分布Aの第1乱数に、第1乱数源4によって変換される(S103参照)。次に、第2乱数源5によって例えば図2に示すガウス分布Bの第2乱数が生成され(S104参照)、引き続いて、乱数合成手段6によって例えば図2に示すガウス分布Cの乱数が合成関数として乱数化される(S105参照)。乱数合成手段6によって生成された合成乱数はDA変換手段7によってアナログ変換され、アナログ値の合成乱数信号s1としてネットワークへ送信される(S106参照)。 In the random number generator 2 on the transmitting side, as shown in FIG. 6A, the first random number is first generated by the first random number source 4 (see step (hereinafter referred to as S) 101), and the generated random numbers are generated. Is converted into a uniform distribution by the first random number source 4 (see S102). After that, the first random number of uniform distribution is converted into a random number of arbitrary distribution, for example, the first random number of Gaussian distribution A suitable for the encrypted data used at a predetermined destination shown in FIG. 2, by the first random number source 4. (See S103). Next, the second random number source 5 generates, for example, the second random number of the Gaussian distribution B shown in FIG. 2 (see S104), and then the random number synthesizing means 6 generates the random number of the Gaussian distribution C shown in FIG. 2, for example, as a synthesis function. Is randomized as (see S105). The synthetic random number generated by the random number synthesis means 6 is analog-converted by the DA conversion means 7, and is transmitted to the network as a composite random number signal s1 of an analog value (see S106).
 受信側のHOST3では、同図(b)に示すように、乱数発生器2から送信されるアナログ値の合成乱数信号s1が受信手段11に受信され、AD変換手段12によってデジタル変換される(S201参照)。 In HOST 3 on the receiving side, as shown in FIG. 3B, the composite random number signal s1 of the analog value transmitted from the random number generator 2 is received by the receiving means 11 and digitally converted by the AD conversion means 12 (S201). reference).
 図4(a)に示されるように、送信側の乱数合成手段6で合成された際のデジタル値の合成乱数信号s1は、同図に点線で表わされるように離散的な値になっている。このような離散的な合成乱数信号s1は、図4(b)に実線で示されるように、非離散的な連続値であるアナログ値としてHOST3に送られて来る。AD変換手段12では、乱数合成手段6によって合成乱数が生成されるタイミングに同期しないタイミングt、すなわち、合成乱数信号s1がDMA転送される一定間隔のタイミングtで、合成乱数信号s1のアナログ値がサンプリングされて、デジタル値に変換される。 As shown in FIG. 4A, the composite random number signal s1 of the digital value when synthesized by the random number synthesis means 6 on the transmitting side has discrete values as shown by the dotted line in the figure. .. Such a discrete synthetic random number signal s1 is sent to HOST3 as an analog value which is a non-discrete continuous value as shown by a solid line in FIG. 4 (b). In the AD conversion means 12, the analog value of the synthetic random number signal s1 is set at a timing t that is not synchronized with the timing at which the random number synthesis means 6 generates the synthetic random number, that is, at a timing t at a fixed interval in which the synthetic random number signal s1 is transferred by DMA. It is sampled and converted to a digital value.
 このサンプリングされるタイミングtは、図4(c)に一部拡大して示すように、乱数合成手段6によって合成乱数が離散的に生成される点線で示されるタイミングとは一致しない。このタイミングの不一致は、サンプリングされるアナログ値に時間ノイズとして乗り、合成乱数信号s1をデジタル値に量子化する際の量子化ノイズとなる。 This sampling timing t does not coincide with the timing shown by the dotted line in which the synthesized random numbers are discretely generated by the random number synthesizing means 6, as shown in a partially enlarged state in FIG. 4 (c). This timing mismatch is multiplied by the sampled analog value as time noise, and becomes quantization noise when the synthetic random number signal s1 is quantized into a digital value.
 AD変換手段12によってデジタル変換された合成乱数は、上記の量子化ノイズがCPUによって除去される(S202参照)。次に、乱数分布抽出手段13により、図2(b)に示すように不必要なガウス分布Bの第2乱数が除去されて、必要なガウス分布Aの第1乱数が抽出される(S203参照)。次に、抽出された第1乱数で暗号鍵が生成されて内部メモリに記憶され(S204参照)、内部メモリに記憶されたデータが生成された暗号鍵によって暗号化される(S205参照)。暗号化されたデータD1は送信手段16によって所定の送信先へ送信される(S206参照)。 The CPU removes the above-mentioned quantization noise from the synthetic random number digitally converted by the AD conversion means 12 (see S202). Next, the random number distribution extraction means 13 removes the unnecessary second random number of the Gaussian distribution B as shown in FIG. 2B, and extracts the first random number of the necessary Gaussian distribution A (see S203). ). Next, an encryption key is generated by the extracted first random number and stored in the internal memory (see S204), and the data stored in the internal memory is encrypted by the generated encryption key (see S205). The encrypted data D1 is transmitted to a predetermined destination by the transmission means 16 (see S206).
 このような本実施形態による乱数通信システム1および乱数通信方法によれば、上述したように、乱数発生器2における第1乱数源4で生成される、受信側へ送信したい任意の分布Aを有する第1乱数は、第2乱数源5で生成される、第1乱数源4が生成する第1乱数のガウス分布Aと異なるガウス分布Bの第2乱数と、乱数合成手段6によって合成される。合成された乱数は、DA変換手段7によってデジタル値からアナログ値に変換されて、合成乱数信号s1として、送信手段8から送信される。送信手段8から送信される合成乱数信号s1は、HOST3における受信手段11によって受信され、AD変換手段12によってアナログ値からデジタル値に戻される。そして、デジタル値に戻された合成乱数信号s1から、乱数分布抽出手段13によって任意のガウス分布Aの乱数が抽出される。 According to the random number communication system 1 and the random number communication method according to the present embodiment as described above, as described above, the random number generator 2 has an arbitrary distribution A generated by the first random number source 4 and desired to be transmitted to the receiving side. The first random number is synthesized by the random number synthesizing means 6 and the second random number of the Gaussian distribution B, which is different from the Gaussian distribution A of the first random number generated by the first random number source 4, which is generated by the second random number source 5. The synthesized random number is converted from a digital value to an analog value by the DA conversion means 7, and is transmitted from the transmission means 8 as a synthetic random number signal s1. The synthetic random number signal s1 transmitted from the transmitting means 8 is received by the receiving means 11 in HOST 3, and is returned from the analog value to the digital value by the AD conversion means 12. Then, a random number having an arbitrary Gaussian distribution A is extracted by the random number distribution extraction means 13 from the synthetic random number signal s1 returned to the digital value.
 なお、この際、期待されるガウス分布Aが抽出されない場合、HOST3は、第三者によってハッキングされていると判断し、送られて来る合成乱数信号s1のサンプリングを止めることができる。 At this time, if the expected Gaussian distribution A is not extracted, HOST3 can determine that it has been hacked by a third party and stop sampling the sent synthetic random number signal s1.
 したがって、乱数発生器2の送信手段8から送信されてHOST3の受信手段11に受信されるまでの通信途中において、合成乱数信号s1が第三者に傍受されても、合成乱数信号s1は、任意のガウス分布Aの第1乱数にその分布と異なるガウス分布Bの第2乱数が合成されて、任意のガウス分布Aと異なるガウス分布Cの乱数分布をしているため、送信したい第1乱数の任意のガウス分布Aはその第三者に読み取られることはない。 Therefore, even if the synthetic random number signal s1 is intercepted by a third party during the communication from the transmission means 8 of the random number generator 2 to the reception means 11 of the HOST 3, the synthetic random number signal s1 is arbitrary. The first random number of the Gaussian distribution A is combined with the second random number of the Gaussian distribution B that is different from that distribution, and the random number distribution of the Gaussian distribution C that is different from the arbitrary Gaussian distribution A is obtained. Any Gaussian distribution A cannot be read by the third party.
 また、合成乱数信号s1は、DA変換手段7でアナログ値に変換されて送信されるため、図4(a)に示すように離散的なデジタル値として生成される乱数生成タイミングと、図4(b)に示すように非離散的なアナログ値として通信される合成乱数信号s1が受信側でサンプリングされるタイミングtとは、同調しない。したがって、受信側のHOST3で受信されてサンプリングされる合成乱数には図4(c)に示すように時間ノイズが乗る。また、通信途中における合成乱数信号s1をネットワークで傍受する第三者は、HOST3のサンプリングタイミングに一致しないタイミングで合成乱数をサンプリングすることとなる。よって、第三者がサンプリングする合成乱数には、HOST3でサンプリングされるものと異なる時間ノイズが乗るため、合成乱数信号s1のネットワークにおける通信の秘匿性は高まる。 Further, since the synthetic random number signal s1 is converted into an analog value by the DA conversion means 7 and transmitted, the random number generation timing generated as a discrete digital value as shown in FIG. 4A and FIG. 4 ( As shown in b), the synthetic random number signal s1 communicated as a non-discrete analog value is not synchronized with the timing t sampled on the receiving side. Therefore, as shown in FIG. 4C, time noise is added to the synthetic random number received and sampled by HOST 3 on the receiving side. Further, a third party who intercepts the synthetic random number signal s1 in the middle of communication on the network will sample the synthetic random number at a timing that does not match the sampling timing of HOST3. Therefore, since the synthetic random number sampled by the third party has a time noise different from that sampled by HOST3, the confidentiality of communication in the network of the synthetic random number signal s1 is enhanced.
 すなわち、本実施形態の乱数通信システム1および乱数通信方法によれば、第1乱数の特徴を隠したまま、乱数発生器2からHOST3へ、HOST3の乱数源として第1乱数を送信することができる。一般的に、ある分布に従う乱数を計算・生成するにはかなりの計算を必要とする。そこで、ハードウエア乱数源から乱数を得ることを考えるが、ハードウエア乱数源はICであることが一般的なため、乱数をそのまま使うと、暗号鍵となる乱数がそのまま第三者に知られてしまう。そのため、暗号化して乱数を送ることを考えるが、暗号化をするための乱数を得るために暗号を使うのは本末転倒である。そこで、本実施形態の乱数通信システム1および乱数通信方法では、予想困難な乱数分布に変換して乱数発生器2からHOST3へ第1乱数を送ることにより、安全性を高められる。これにより、HOST3側は、質の良い乱数を高い計算リソースなしに使用することができる That is, according to the random number communication system 1 and the random number communication method of the present embodiment, the first random number can be transmitted from the random number generator 2 to the HOST 3 as the random number source of the HOST 3 while hiding the characteristics of the first random number. .. In general, it takes a lot of calculations to calculate and generate random numbers that follow a certain distribution. Therefore, we will consider obtaining a random number from a hardware random number source, but since the hardware random number source is generally an IC, if the random number is used as it is, the random number that will be the encryption key will be known to a third party as it is. It ends up. Therefore, we think about encrypting and sending random numbers, but using encryption to obtain random numbers for encryption is a mess. Therefore, in the random number communication system 1 and the random number communication method of the present embodiment, the safety can be enhanced by converting the random number distribution into a random number distribution that is difficult to predict and sending the first random number from the random number generator 2 to the HOST 3. This allows the HOST3 side to use good quality random numbers without high computational resources.
 このように本実施形態によれば、送信側における第1乱数源4で生成する第1乱数が受信側へ通信される際に、その通信データが傍受されても、HOST3で使用される第1乱数の分布が判明することの無い乱数通信システム1および乱数通信方法を提供することができる。 As described above, according to the present embodiment, when the first random number generated by the first random number source 4 on the transmitting side is communicated to the receiving side, even if the communication data is intercepted, the first random number used in HOST 3 is used. It is possible to provide a random number communication system 1 and a random number communication method in which the distribution of random numbers is not known.
 また、本実施形態の乱数通信システム1によれば、受信側のHOST3において、AD変換手段12は、アナログ値からデジタル値に変換した合成乱数を乱数分布抽出手段13へDMA転送するため、AD変換手段12でデジタル値に変換された合成乱数を定期的に自動で乱数分布抽出手段13へ出力することができる。したがって、AD変換手段12から乱数分布抽出手段13への合成乱数の出力に便宜を図ることができる。 Further, according to the random number communication system 1 of the present embodiment, in HOST 3 on the receiving side, the AD conversion means 12 performs AD conversion because the synthetic random number converted from the analog value to the digital value is DMA-transferred to the random number distribution extraction means 13. The synthetic random number converted into a digital value by the means 12 can be automatically and periodically output to the random number distribution extraction means 13. Therefore, it is possible to facilitate the output of the synthetic random number from the AD conversion means 12 to the random number distribution extraction means 13.
 なお、本実施形態の乱数通信システム1において、乱数発生器2の送信手段8が、DA変換手段7でアナログ値に変換される合成乱数信号s1を常時送信するように構成してもよい。本構成によれば、送信手段8から送信される通信データを傍受する第三者は、大量のアナログ値の通信データを保存して解析しなくてはならず、その保存先のメモリ容量には限度があるため、攻撃が難しくなる。 In the random number communication system 1 of the present embodiment, the transmission means 8 of the random number generator 2 may be configured to constantly transmit the synthetic random number signal s1 converted into an analog value by the DA conversion means 7. According to this configuration, a third party who intercepts the communication data transmitted from the transmission means 8 must store and analyze a large amount of analog value communication data, and the memory capacity of the storage destination is determined. The limits make it difficult to attack.
 また、上記の実施形態では、乱数合成手段6において、任意のガウス分布Aの乱数に、その分布と異なる1種類のガウス分布Bの乱数を合成した場合について、説明した。しかし、任意のガウス分布Aの乱数に合成する、分布が異なる他の分布の乱数は1種類に限られることは無く、2種類や3種類等の複数種類の分布の乱数を合成するようにしてもよい。この場合、受信側では、乱数分布抽出手段13において、合成した複数種類の分布の乱数を減算して、任意のガウス分布Aの乱数を抽出することとなる。 Further, in the above embodiment, the case where the random number synthesizing means 6 synthesizes a random number of an arbitrary Gaussian distribution A with a random number of one type of Gaussian distribution B different from the distribution has been described. However, the random numbers of other distributions having different distributions, which are combined with the random numbers of an arbitrary Gaussian distribution A, are not limited to one type, and the random numbers of a plurality of types such as two types or three types are combined. May be good. In this case, on the receiving side, the random number distribution extraction means 13 subtracts the random numbers of the synthesized plurality of types of distributions to extract the random numbers of an arbitrary Gaussian distribution A.
 また、上記の実施形態では、図3(a)のS102において、第1乱数源4が第1乱数を一様分布の乱数に変換した場合について、説明した。しかし、その後のS103において任意の分布の乱数に変換するため、S102において、ポアソン分布などの他の分布の乱数に変換しても構わない。 Further, in the above embodiment, the case where the first random number source 4 converts the first random number into a uniformly distributed random number in S102 of FIG. 3A has been described. However, since it is converted into a random number having an arbitrary distribution in S103 thereafter, it may be converted into a random number having another distribution such as a Poisson distribution in S102.
 本発明によって受信側に送られて来る乱数を用いることで、HOST3は、LWE暗号(Learning With Errors)やOTP(One Time Pad)暗号を従来よりも推測され難く行うことができ、また、OTP鍵を従来よりも推測され難く生成することができる。格子暗号等で、格子点を基底ベクトルの整数係数線形結合と誤差の和として表わしたりするとき、従来のシステムおよび方法で送られて来る乱数をこの係数と誤差のノイズデータとして使用すると、LWE問題を安易に解かれてしまう。しかし、本発明によって乱数の特徴を隠したまま、送信側から受信側へ乱数を送信することで、送信する乱数の分布の平均値と分散の予想が困難になる。また、OTP暗号にこのような乱数を使用することにより、一様性乱数よりも推測され難いOTP暗号を行うことができる。また、多くの鍵を必要とするOTP鍵を保存しておく必要がなくなり、完全に独立した乱数を常に得ることができる。 By using the random numbers sent to the receiving side by the present invention, HOST3 can perform LWE encryption (Learning With Errors) and OTP (One Time Pad) encryption more difficultly to guess than before, and also an OTP key. Can be generated more difficult to guess than before. When the lattice points are expressed as the sum of the integer coefficient linear combination of the basis vector and the error in lattice-based cryptography, etc., if the random number sent by the conventional system and method is used as the noise data of this coefficient and the error, the LWE problem Is easily solved. However, by transmitting a random number from the transmitting side to the receiving side while hiding the characteristics of the random number by the present invention, it becomes difficult to predict the average value and the variance of the distribution of the random number to be transmitted. Further, by using such a random number for the OTP cipher, it is possible to perform the OTP cipher that is harder to guess than the uniform random number. In addition, it is not necessary to store the OTP key, which requires many keys, and a completely independent random number can always be obtained.
 1…乱数通信システム
 2…乱数発生器
 3…ホスト(HOST)
 4…第1乱数源
 5…第2乱数源
 6…乱数合成手段
 7…DA変換手段
 8,16…送信手段
 11…受信手段
 12…AD変換手段
 13…乱数分布抽出手段
 14…鍵生成手段
 15…暗号化手段
 17…復号化手段 1 ... Random number communication system 2 ... Random number generator 3 ... Host (HOST)
4 ... 1st random number source 5 ... 2nd random number source 6 ... Random number synthesis means 7 ... DA conversion means 8, 16 ... Transmission means 11 ... Reception means 12 ... AD conversion means 13 ... Random number distribution extraction means 14 ... Key generation means 15 ... Encryption means 17 ... Decryption means

Claims (5)

  1.  任意の分布の乱数を生成する第1乱数源と、前記第1乱数源の生成する乱数の分布と異なる分布の乱数を生成する第2乱数源と、前記第1乱数源および前記第2乱数源で生成される各乱数を合成する乱数合成手段と、前記乱数合成手段で合成された合成乱数をデジタル値からアナログ値に変換するDA変換手段と、前記DA変換手段でアナログ値に変換された合成乱数信号を送信する送信手段と、前記送信手段で送信された前記合成乱数信号を受信する受信手段と、前記受信手段で受信された前記合成乱数信号をアナログ値からデジタル値に変換するAD変換手段と、前記AD変換手段でデジタル値に戻された合成乱数から前記任意の分布の乱数を抽出する乱数分布抽出手段とを備える乱数通信システム。 A first random number source that generates random numbers of an arbitrary distribution, a second random number source that generates random numbers having a distribution different from the distribution of random numbers generated by the first random number source, the first random number source, and the second random number source. A random number synthesizing means for synthesizing each random number generated in the above, a DA conversion means for converting the synthesized random number synthesized by the random number synthesizing means from a digital value to an analog value, and a synthesis converted into an analog value by the DA conversion means. A transmission means for transmitting a random number signal, a receiving means for receiving the synthetic random number signal transmitted by the transmission means, and an AD conversion means for converting the synthetic random number signal received by the receiving means from an analog value to a digital value. A random number communication system including a random number distribution extracting means for extracting a random number having an arbitrary distribution from a synthetic random number returned to a digital value by the AD conversion means.
  2.  前記AD変換手段は、アナログ値からデジタル値に変換した前記合成乱数を前記乱数分布抽出手段へDMA転送することを特徴とする請求項1に記載の乱数通信システム。 The random number communication system according to claim 1, wherein the AD conversion means performs DMA transfer of the synthetic random number converted from an analog value to a digital value to the random number distribution extraction means.
  3.  前記送信手段は、前記DA変換手段でアナログ値に変換される合成乱数信号を常時送信することを特徴とする請求項1または請求項2に記載の乱数通信システム。 The random number communication system according to claim 1 or 2, wherein the transmission means constantly transmits a synthetic random number signal converted into an analog value by the DA conversion means.
  4.  前記第1乱数源、前記第2乱数源、前記乱数合成手段、前記DA変換手段および前記送信手段は送信側のICとして構成され、前記受信手段、前記AD変換手段および前記乱数分布抽出手段手段は受信側のICとして構成されることを特徴とする請求項1から請求項3のいずれか1項に記載の乱数通信システム。 The first random number source, the second random number source, the random number synthesizing means, the DA conversion means, and the transmitting means are configured as ICs on the transmitting side, and the receiving means, the AD conversion means, and the random number distribution extracting means means. The random number communication system according to any one of claims 1 to 3, wherein the IC is configured as a receiving IC.
  5.  第1乱数源に任意の分布の乱数を生成させるステップと、前記第1乱数源が生成する乱数の分布と異なる分布の乱数を第2乱数源に生成させるステップと、前記第1乱数源および前記第2乱数源で生成される各乱数を乱数合成手段によって合成するステップと、前記乱数合成手段で合成された合成乱数をDA変換手段によってデジタル値からアナログ値に変換するステップと、前記DA変換手段でアナログ値に変換された合成乱数信号を送信手段によって送信するステップと、前記送信手段で送信された前記合成乱数信号を受信手段によって受信するステップと、前記受信手段で受信された前記合成乱数信号をAD変換手段によってアナログ値からデジタル値に変換するステップと、前記AD変換手段でデジタル値に戻された合成乱数から前記任意の分布の乱数を乱数分布抽出手段によって抽出するステップとを備える乱数通信方法。 A step of causing the first random number source to generate random numbers having an arbitrary distribution, a step of causing the second random number source to generate random numbers having a distribution different from the distribution of random numbers generated by the first random number source, and the first random number source and the above. A step of synthesizing each random number generated by the second random number source by a random number synthesizing means, a step of converting a synthesized random number synthesized by the random number synthesizing means from a digital value to an analog value by a DA conversion means, and the DA conversion means. A step of transmitting the synthetic random number signal converted into an analog value by the transmitting means, a step of receiving the synthetic random number signal transmitted by the transmitting means by the receiving means, and the synthetic random number signal received by the receiving means. Random number communication including a step of converting an analog value to a digital value by an AD conversion means and a step of extracting a random number of an arbitrary distribution from a synthetic random number returned to a digital value by the AD conversion means by a random number distribution extraction means. Method.
PCT/JP2020/039249 2019-11-21 2020-10-19 Random number communication system and random number communication method WO2021100385A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2021558226A JPWO2021100385A1 (en) 2019-11-21 2020-10-19

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2019-210201 2019-11-21
JP2019210201 2019-11-21

Publications (1)

Publication Number Publication Date
WO2021100385A1 true WO2021100385A1 (en) 2021-05-27

Family

ID=75981180

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2020/039249 WO2021100385A1 (en) 2019-11-21 2020-10-19 Random number communication system and random number communication method

Country Status (2)

Country Link
JP (1) JPWO2021100385A1 (en)
WO (1) WO2021100385A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS62190A (en) * 1985-06-26 1987-01-06 Toshiba Corp Picture signal scramble transmission system
JPH1185472A (en) * 1997-09-12 1999-03-30 Toshiba Corp Physical random number generation device and method therefor, and physical random number recording medium

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS62190A (en) * 1985-06-26 1987-01-06 Toshiba Corp Picture signal scramble transmission system
JPH1185472A (en) * 1997-09-12 1999-03-30 Toshiba Corp Physical random number generation device and method therefor, and physical random number recording medium

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
HYVARINEN, A. ET AL.: "Detailed Independent Component Analysis", 10 February 2005, TOKYO ELECTRIC UNIVERSITY PUBLICATION BUREAU, JP, ISBN: 4-501-53860-0, article HYVARINEN, A. ET AL: "Chapter 7 - What is independent component analysis?", pages: 164 - 183, XP009529290 *
YOTSUJI, TETSUAKI: "Probability distribution random number generation method for computer simulation", 1 July 2010, PLEIADES PUBLISHING CO., LTD., JP, ISBN: 978-4-903814-35-3, article TETSUAKI YOTSUJI: "2.3 superimposition method", pages: 82 - 86, XP009529325 *

Also Published As

Publication number Publication date
JPWO2021100385A1 (en) 2021-05-27

Similar Documents

Publication Publication Date Title
US7224795B2 (en) Variable-length key cryptosystem
EP1119131B1 (en) Method and apparatus for encrypting contents information
CN109150499B (en) Method and device for dynamically encrypting data, computer equipment and storage medium
EP2491510B1 (en) Distribution system and method for distributing digital information
US9350544B2 (en) Apparatus for encrypting data
WO2016045217A1 (en) Encryption method and encryption device
US8108674B2 (en) Transmitting/receiving system and method, transmitting apparatus and method, receiving apparatus and method, and program used therewith
CN107483192B (en) Data transmission method and device based on quantum communication
EP3476078B1 (en) Systems and methods for authenticating communications using a single message exchange and symmetric key
US7936874B2 (en) Information transfer system, encryption device, and decryption device
CN111555872A (en) Communication data processing method, device, computer system and storage medium
JP2009105566A (en) Distribution control device and distribution control program
EP2326043A1 (en) Preventing cloning of receivers of encrypted messages
CN112382376A (en) Medical instrument management tracing system based on block chain
JP2020513169A (en) Data encryption method and system using device authentication key
CN111277605B (en) Data sharing method and device, computer equipment and storage medium
WO2021100385A1 (en) Random number communication system and random number communication method
KR100978001B1 (en) Imformation protect and equipment manage system for applying aria algorithim and method of the same
CN114499825A (en) Double-control key management method, system, encryption machine and storage medium
KR101807259B1 (en) Apparatus and methdo for encoding
JP2000305849A (en) Transmitter and its method, receiver and its method and communication system
CN112954388A (en) Data file acquisition method and device, terminal equipment and storage medium
JPH08204701A (en) Electronic mail cipher communication system and cipher communication method
RU2697696C1 (en) Method of transmitting a message over a computer network using hardware for quantum key distribution
JP2002063139A (en) Terminal equipment and server device and terminal authenticating method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20890044

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2021558226

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20890044

Country of ref document: EP

Kind code of ref document: A1