JP2009151429A - Pseudo random number generator, information processing system and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a mechanism in which even if a plurality of pseudo random number generators use a common random number seed value and a common random number generation algorithm, pseudo random numbers generated thereby are necessarily never collided between the plurality of pseudo random number generators. <P>SOLUTION: Each pseudo random number generator 100 asynchronously generates a pseudo random number of the same series successively for each common random number length by use of a common random number seed value and a common random number generation algorithm, and adopts the pseudo random number in a position corresponding to a unique device ID of each pseudo random number generator 100 as the pseudo random number of the own device, whereby the pseudo random number adopted by each pseudo random number generator 100 is differed to each other. Consequently, the pseudo random numbers are never collided between the plurality of pseudo random number generators. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a pseudo random number generation method.

As a conventional pseudo-random number generation technique, a technique described in Japanese Patent Laid-Open No. 2003-084971 is known.
In this prior art, non-collision is realized by checking the periodicity of pseudorandom numbers and changing the sequence.
Further, a technique described in JP 2006-053715 A is known.
In this prior art, pseudo-random number generation that is unpredictable and non-collision is realized by changing the seed value every time.
JP 2003-084971 A JP 2006-053715 A

However, in the above-mentioned Japanese Patent Application Laid-Open Nos. 2003-089711 and 2006-053715, in a plurality of devices adopting the same pseudo-random number generation method, a certain device does not know a random value generated by another device, and a plurality of devices There is a problem that it is not possible to guarantee the generation of pseudo-random numbers that do not collide with each other.

  The main object of the present invention is to solve the above-mentioned problems, and even when a plurality of pseudo-random number generation devices use a common random number seed value and a common random number generation algorithm, the generated pseudo-random numbers generate a plurality of pseudo-random numbers. The main purpose is to realize a mechanism that always ensures non-collision between devices.

The pseudorandom number generator according to the present invention is
A pseudo-random number generator for generating pseudo-random numbers,
A random number seed value recording unit for recording a random number seed value common to other pseudo-random number generation devices;
A random number generation algorithm common to other pseudo random number generation devices, a random data length common to other pseudo random number generation devices, and an assigned random number specifying value for specifying an assigned pseudo random number assigned to the own device are indicated. A pseudo-random number generation information recording unit for recording pseudo-random number generation information;
Using the random number seed value, the random number generation algorithm sequentially generates pseudo random numbers corresponding to the random data length, and the generated pseudo random numbers are assigned with the generation order corresponding to the assigned random number specific value. And a pseudo random number generation unit that extracts the pseudo random number.

As described above, according to the present embodiment, only the pseudo-random numbers assigned to the pseudo-random number generator are extracted, so even if a plurality of pseudo-random number generators use a common random number seed value and a common random number generation algorithm. Pseudorandom numbers are always non-collision between a plurality of pseudorandom number generators.
In addition, even if there are a plurality of pseudo-random number generators, the number of random number seed values to be protected is one, so that it is easy to ensure safety.
In addition, this is a series of pseudo-random number generation processing, and each pseudo-random number generation device can generate pseudo-random numbers asynchronously with other pseudo-random number generation devices, so communication between the pseudo-random number generation devices is unnecessary. For this reason, pseudorandom numbers can be generated while suppressing an increase in processing amount in the pseudorandom number generator.

Embodiment 1 FIG.
In the present embodiment, on the premise that a pseudo-random number sequence having a long period and no bias generated from a single seed value is used, the length of pseudo-random numbers generated by a plurality of devices at once is determined. In addition, by using a pseudo-random number at a predetermined interval for each device, a sequence of pseudo-random numbers can be divided and used between multiple devices to generate pseudo-random numbers that do not collide between multiple devices. A pseudo-random number generation method will be described.
Hereinafter, the pseudo-random number generation method of the present embodiment will be described with reference to FIGS.

FIG. 1 is a block diagram showing the overall configuration of the key generation system according to the present embodiment.
In FIG. 1, reference numeral 100 denotes a pseudo random number generation device that generates a pseudo random number and sends it to the key generation device 200. Each pseudo random number generation device 100 shown in FIG. 1 belongs to the same pseudo random number generation group. The pseudo random number generation group is N (N ≧ 2) that sequentially generates pseudo random numbers corresponding to a common random number data length (hereinafter also referred to as a random number length) using a common random number generation algorithm using a common random number seed value. (N = 3 in the example of FIG. 1).
Reference numeral 130 denotes pseudo-random number generation information, which is setting information for generating a non-collision pseudo-random number.
Reference numeral 200 denotes a key generation device that receives a pseudorandom number from the pseudorandom number generation device 100 and generates a key 300.
Reference numeral 300 denotes a key, which is generated by the key generation apparatus 200. All generated keys are different.
Reference numeral 400 denotes a data communication path, and a plurality of pseudo random number generation devices 100 are connected to transmit and receive data.

The overall operation will be described with reference to each device in FIG.
First, a pseudo-random number is generated by the pseudo-random number generation device 100, and the pseudo-random number is output from the pseudo-random number generation device 100 to the key generation device 200. The key generation device 200 generates a key 300 using the pseudo-random number, and the key generation device The key 300 is output from 200.
In order to generate pseudo-random numbers that do not collide with each other even if there are a plurality of pseudo-random number generation devices 100, pseudo-random number generation is generated as setting information for generating and using a series of pseudo-random number sequences among a plurality of devices. Information 130 is used. Further, since the plurality of pseudo random number generation devices 100 generate a series of pseudo random number sequences, each device holds the same random number seed value.
Here, a series of pseudo-random numbers means a pseudo-random number sequence generated by a common random number generation algorithm using a common random number seed value.

FIG. 2 shows the contents of the pseudorandom number generation information 130.
The pseudo-random number generation information 130 includes the number of the pseudo-random number generation device 100, the device ID serving as identification information for each pseudo-random number generation device 100, the random length generated by the pseudo-random number generation device 100 at a time, and the individual numbers for the pseudo-random number generation device 100. It consists of a generated random number length and a pseudo random number generation algorithm of the pseudo random number generation device 100.
In the pseudorandom number generation information 130, the number of devices, the random number length, and the content of the pseudorandom number generation algorithm are common among a plurality of pseudorandom number generation devices 100 belonging to the same pseudorandom number generation group.
On the other hand, the device ID and the generated random number length are different for each pseudo-random number generation device 100.
The generated random number length indicates the total data amount of the generated pseudo random numbers, and is different for each pseudo random number generation device 100 depending on the number of generations (generation frequency) of the pseudo random numbers.
The device ID (m: 1 ≦ m ≦ N) is an assigned random number specifying value for specifying an assigned pseudo random number assigned to the own device in a series of pseudo random number sequences.

FIG. 3 shows an example of a method for distributing a series of pseudo-random numbers among a plurality of pseudo-random number generation devices 100.
That is, each of the plurality of pseudo random number generation devices 100 generates the same pseudo random number sequence using a common random number generation algorithm using a common random number seed value.
Each pseudo-random number generation device 100 generates a pseudo-random number sequence of the same series, and sequentially uses pseudo-random numbers corresponding to the random length from the series.
For example, when the number of pseudo random number generation devices 100 is 3 (N = 3) and the random number length is 128 bits, the pseudo random number generation device 100 with the device ID 1 (m = 1) is the first 128 bits of the pseudo random number sequence 1000. Random number A1001A.
The pseudo-random number generation device 100 with the device ID 2 (m = 2) generates the first 128 bits of the pseudo-random number sequence 1000 but does not use the next 128-bit random number A 1002A.
Further, the pseudo-random number generation device 100 with the device ID 3 (m = 3) generates the first 256 bits of the pseudo-random number sequence 1000, but uses the next 128-bit random number A1003A.
Thereafter, each pseudo-random number generation device 100 uses a pseudo-random number corresponding to the random number length for each interval of the number of devices × random number length. That is, every time there is a pseudo random number generation request from the key generation device 200, N pseudo random numbers corresponding to the random number length are sequentially generated, and the mth pseudo random number from among the N pseudo random numbers is assigned. Extract as a random number.
Note that each pseudo-random number generation device 100, when there is a pseudo-random number generation request from the key generation device 200, is independent (asynchronously) of the random number length from the generation of pseudo-random numbers in the other pseudo-random number generation devices 100. The pseudo random numbers are sequentially generated, and the pseudo random numbers in the generation order corresponding to the device ID of the own apparatus are extracted from the generated pseudo random numbers and used.
Also, the generated pseudo-random numbers are all stored by each device, including pseudo-random numbers used by other devices, for collision confirmation.
Thus, since the pseudo random numbers assigned according to the rank of the device ID of each pseudo random number generation device 100 are extracted from the same series of pseudo random number sequences, even if the plurality of pseudo random number generation devices 100 are asynchronous, there is no collision, and Pseudorandom numbers without bias will be used.
For this reason, non-collision of keys generated from pseudorandom numbers is realized.

FIG. 4 is a block diagram showing a configuration of the pseudorandom number generation device 100.
In FIG. 4, the pseudo random number generation information input unit 101 inputs the pseudo random number generation information 130 shown in FIG.
The pseudo random number generation information processing unit 102 stores the pseudo random number generation information 130 input by the pseudo random number generation information input unit 101 in the pseudo random number generation information recording unit 103.
The pseudo random number generation information recording unit 103 records the pseudo random number generation information 130.
The random number seed input / output unit 104 inputs a random number seed value 132 (hereinafter also referred to as a random number seed 132). As described above, the random number seed value 132 is a seed value common to the other pseudo random number generation devices 100.
The random number seed processing unit 105 stores the random number seed 132 in the random number seed recording unit 106.
The random number seed recording unit 106 records the random number seed 132.
The pseudo random number output unit 107 outputs the pseudo random number 133 (allocated pseudo random number) extracted by the pseudo random number generation unit 108 to the key generation device 200.

The pseudo-random number generator 108 sequentially generates pseudo-random numbers corresponding to the length of the random number data by the random number generation algorithm indicated in the pseudo-random number generation information 130 using the random number seed 132, and the pseudo-random numbers are generated from the generated pseudo-random numbers. A pseudo random number in the order corresponding to the device ID (assigned random number specific value) indicated in the generation information 130 is extracted as an assigned pseudo random number.
The pseudo random number recording unit 109 records all of the pseudo random numbers generated by the pseudo random number generation unit 108 (including pseudo random numbers used by other pseudo random number generation devices 100).
Then, each time a pseudo-random number is generated, the pseudo-random number generator 108 determines whether or not the generated pseudo-random number matches any of the recorded pseudo-random numbers recorded in the pseudo-random number recording unit 109. When the pseudo-random number matches one of the recorded pseudo-random numbers, the pseudo-random number that matches the recorded pseudo-random number is excluded, and the generation order corresponding to the rank (device ID) of the own device is generated from the generated pseudo-random numbers. A pseudo random number is extracted as an assigned pseudo random number.
The pseudo-random number recording unit 109 records the pseudo-random number generated by the pseudo-random number generation unit 108 by excluding the pseudo-random number that is excluded as being coincident with the recorded pseudo-random number by the pseudo-random number generation unit.
This is to prevent the collided pseudo-random numbers from being used when the same pseudo-random numbers as the pseudo-random numbers used in the past by any of the pseudo-random number generators 100 are generated again.

5 and 6 are flowcharts showing the initial processing of the pseudorandom number generator 100. FIG.
FIG. 5 shows an initial process of the first pseudorandom number generation apparatus 100 that generates a random number seed.

First, in ST100, the administrator 120 of the first pseudorandom number generation device 100 inputs the pseudorandom number generation information 130 from the pseudorandom number generation information input unit 101 to the pseudorandom number generation device 100, and the pseudorandom number generation information processing unit 102 stores the pseudo random number generation information 130 in the pseudo random number generation information recording unit 103.
Next, in ST101, the administrator 120 inputs the password 131 from the random number seed input / output unit 104 to the pseudorandom number generation device 100, and the random number seed processing unit 105 generates the random number seed 132.
Next, in ST102, the random number seed processing unit 105 generates a random number seed encryption key from the password 131, encrypts the random number seed 132, and stores the encrypted random number seed 132 in the random number seed recording unit 106.
Finally, in ST103, the random number seed input / output unit 104 outputs the encrypted random number seed 132.
The output encrypted random number seed 132 is transferred to the administrator 120 of another pseudo random number generation device 100 together with the password 131 input by the administrator 120.

FIG. 6 shows the initial processing of the second and subsequent pseudorandom number generators 100 to which the random number seed 132 generated by the first pseudorandom number generator 100 is input.
In the second and subsequent pseudorandom number generators 100, the administrator 120 inputs two passwords for decryption of the random number seed 132 encrypted by the first pseudorandom number generator 100 and for re-encryption.

First, in ST150, the administrator 120 inputs the pseudorandom number generation information 130 to the pseudorandom number generation apparatus 100 from the pseudorandom number generation information input unit 101, and the pseudorandom number generation information processing unit 102 stores the pseudorandom number generation information recording unit 103 in the pseudorandom number generation information recording unit 103. The generation information 130 is stored.
Next, in ST151, the administrator 120 inputs the decryption password, the encrypted random number seed 132, and the re-encryption password from the random number seed input / output unit 104 to the pseudo random number generation device 100.
Next, in ST152, the random number seed processing unit 105 generates a key from the password 131, and decrypts the random number seed 132 encrypted using the key.
Next, in ST153, it is determined whether or not the encrypted random number seed 132 has been successfully decrypted. If the decryption is successful, in ST154, the random number seed processing unit 105 generates a key from the re-encrypted password, and the key Is used to re-encrypt the random number seed 132 and store the re-encrypted random number seed 132 in the random number seed recording unit 106.

  7, 8, and 9 are flowcharts showing random number generation processing of the pseudorandom number generation device 100.

In ST200 of FIG. 7, the administrator 120 inputs the password 131 from the random number seed input / output unit 104.
Next, in ST201, the random number seed processing unit 105 reads the encrypted random number seed 132 from the random number seed recording unit 106.
Next, in ST202, the random number seed processing unit 105 generates a key from the password 131, and decrypts the random number seed 132 encrypted using the key.
If decryption of the encrypted random number seed 132 is successful (YES in ST203), the pseudorandom number generation information processing unit 102 reads the pseudorandom number generation information 130 from the pseudorandom number generation information recording unit 103 in ST204.
Next, in ST 205, the pseudo random number generation unit 108 generates the head of the pseudo random number sequence from the pseudo random number generation algorithm and the random number seed 132 indicated in the pseudo random number generation information 130.
Next, in ST206, the pseudo random number generation unit 108 sets the next generation position of the pseudo random number sequence from the device ID, random number length, and generated random number length indicated in the pseudo random number generation information 130.

Next, when there is a pseudo random number generation request from the key generation apparatus 200 in ST207 (YES in ST207), in ST208, the pseudo random number generation unit 108 is a pseudo random number corresponding to the random length indicated in the pseudo random number generation information 130. 133 is generated.
Next, in ST209, the pseudorandom number generation unit 108 checks whether the generated pseudorandom number 133 is the same value as any of the pseudorandom numbers stored in the pseudorandom number recording unit 109 (pseudorandom numbers generated in the past). To do.
If a pseudo-random number having the same value as the generated pseudo-random number 133 exists in the pseudo-random number recording unit 109 (YES in ST210), a pseudo-random number at the next position is generated.
If the pseudo-random number having the same value as the generated pseudo-random number 133 does not exist in the pseudo-random number recording unit 109 (NO in ST210), in ST211, the pseudo-random number generating unit 108 generates another pseudo-random number for collision confirmation. All the pseudo random numbers 133 generated including the pseudo random number 133 used by the apparatus 100 are stored in the pseudo random number recording unit 109.
Next, in ST212, the pseudorandom number generation unit 108 determines whether the pseudorandom number 133 stored in the pseudorandom number recording unit 109 in ST211 is the pseudorandom number 133 assigned to the own device, and the pseudorandom number 133 for the own device is determined. If it is not random number 133 (NO in ST212), a pseudorandom number at the next position is generated.
On the other hand, if it is the pseudorandom number 133 for the own device (YES in ST212), the pseudorandom number output unit 107 outputs the pseudorandom number 133 assigned to the own device to the key generation device 200 in ST213.
Next, in ST214, the pseudorandom number generation unit 108 adds the generated random number length of the pseudorandom number generation information 130 by the random number length.
Next, in ST215, the pseudo random number generation unit 108 checks the end request flag. The end request is set in the end request flag when the process of FIG. 10 described later is performed. If there is an end request (YES in ST216), the pseudorandom number generation information processing unit 102 stores the pseudorandom number generation information 130 in the pseudorandom number generation information recording unit 103 in ST217.
On the other hand, if there is no termination request (NO in ST216), the process returns to ST207.

  FIG. 10 is a flowchart showing an end request process for the pseudorandom number generator 100.

In ST300, administrator 120 inputs password 131 from random number seed input / output unit 104.
Next, in ST301, the random number seed input / output unit 104 generates a key from the password 131, and decrypts the random number seed 132 encrypted using the key.
If decryption of the encrypted random number seed 132 is successful (YES in ST302), it is an end request from the authorized administrator 120, and thus the random number seed processing unit 105 sets an end request flag in ST303.
The termination request made in ST303 is processed in ST216 (FIG. 9) during the random number generation process, and the pseudorandom number generation apparatus 100 ends the random number generation process.

As described above, according to the present embodiment, even when a plurality of pseudo-random number generation devices use a common random number seed value and a common random number generation algorithm, the generated pseudo-random numbers are not necessarily generated between the plurality of pseudo-random number generation devices. It becomes a collision.
In addition, in pseudo-random number generation, the sequence of pseudo-random numbers is determined by the random number seed value, so it is necessary to take measures against leakage of the random number seed value in order to prevent unauthorized generation of pseudo-random numbers. However, the pseudo-random number generation method according to the present embodiment has an effect of ensuring safety because the number of random number seeds to be protected is one even if there are a plurality of pseudo-random number generators.
In addition, this is a series of pseudo-random number generation processing, and each pseudo-random number generation device can generate pseudo-random numbers asynchronously with other pseudo-random number generation devices, so communication between the pseudo-random number generation devices is unnecessary. For this reason, it is possible to generate a pseudo-random number while suppressing an increase in processing amount in the pseudo-random number generator.

As described above, in the present embodiment, on the premise that a long-period and non-biased pseudo-random number sequence generated from a single seed value is used, the following features are not linked between a plurality of devices at the time of pseudo-random number generation. The non-collision pseudorandom number generation method between multiple devices has been described.
(1) A pseudo-random number generation device that generates pseudo-random numbers includes pseudo-random number generation information that holds pseudo-random number generation information that is setting information for distributing and generating a series of pseudo-random number sequences among a plurality of pseudo-random number generation devices. Has processing means.
(2) It has a pseudo random number generation means for generating a pseudo random number using the pseudo random number generation information.

Embodiment 2. FIG.
In the present embodiment, a case will be described in which pseudorandom number generation information of each pseudorandom number generator is synchronized (updated).

FIG. 16 shows a configuration example of the pseudorandom number generation device 100 according to the present embodiment.
Compared to FIG. 4, the pseudorandom number generation device 100 illustrated in FIG. 16 has a configuration in which a pseudorandom number generation information synchronization unit 110 and a communication unit 111 are added.
The elements other than the pseudo-random number generation information synchronization unit 110 and the communication unit 111 are the same as those shown in FIG.

In the case of the pseudo-random number generation device 100 that is the synchronization source of the pseudo-random number generation information 130, the communication unit 111 receives the pseudo-random number generation information 130 transmitted from the synchronization-destination pseudo-random number generation device 100 from the data communication channel 400 and updates it. Pseudo random number generation information 130 is transmitted to the synchronization source pseudo random number generation device 100 through the data communication path 400. On the other hand, in the case of the pseudorandom number generation device 100 that is the synchronization destination of the pseudorandom number generation information 130, the communication unit 111 transmits the pseudorandom number generation information 130 that is held to the synchronization source pseudorandom number generation device 100 to update the pseudorandom number generation device 100. The random number generation information 130 is received from the pseudo random number generation device 100 that is the synchronization source.
In the case of the pseudorandom number generation device 100 that is the synchronization source of the pseudorandom number generation information 130, the pseudorandom number generation information synchronization unit 110 receives the pseudorandom number generation information 130 of the synchronization destination pseudorandom number generation device 100 received by the communication unit 111. Update the contents of. On the other hand, in the case of the pseudorandom number generation device 100 that is the synchronization destination of the pseudorandom number generation information 130, the update pseudorandom number generation information 130 received from the synchronization source pseudorandom number generation device 100 is stored in the pseudorandom number generation information recording unit 103.

11 to 15 are flowcharts showing the pseudo random number generation information synchronization process of the pseudo random number generation device 100.
11, 12, and 13 represent the pseudo-random number generation information synchronization process of the pseudo-random number generation apparatus 100 that is the synchronization source of the pseudo-random number generation information 130.
14 and 15 show the pseudo-random number generation information synchronization process of the pseudo-random number generation device 100 that is the synchronization destination of the pseudo-random number generation information 130.

The synchronization processing of the pseudo-random number generation information 130 does not always have to be performed at the time of the pseudo-random number generation processing, but is performed at a time point when an arbitrary pseudo-random number generation device 100 requests.
The synchronization time is when there is a change in the number of pseudo random number generation devices 100, a change in the random length generated by the pseudo random number generation device 100 at one time, or a change in the pseudo random number generation algorithm of the pseudo random number generation device 100.

  First, processing of the pseudorandom number generation device 100 serving as a synchronization source will be described with reference to FIGS. 11, 12, and 13.

In ST200 of FIG. 11, the synchronization source administrator 120 inputs the password 131 from the random number seed input / output unit 104.
Next, in ST201, the random number seed processing unit 105 reads the encrypted random number seed 132 from the random number seed recording unit 106.
Next, in ST202, the random number seed processing unit 105 generates a key from the password 131, and decrypts the random number seed 132 encrypted using the key.
If decryption of the encrypted random number seed 132 is successful (YES in ST402), the pseudorandom number generation information processing unit 102 reads the pseudorandom number generation information 130 from the pseudorandom number generation information recording unit 103 in ST403.
Next, in ST404, the administrator 120 inputs any one of the number of devices, the random length, and the pseudorandom number generation algorithm of the pseudorandom number generation information 130 for update from the pseudorandom number generation information input unit 101. The administrator 120 inputs only the changed elements among the elements of the pseudorandom number generation information 130.
Next, in ST405, the pseudo-random number generation information synchronization unit 110 transmits a synchronization request to the other pseudo-random number generation device 100 as the synchronization destination through the communication unit 111, and communicates from the other pseudo-random number generation device 100 as the synchronization destination. The current pseudorandom number generation information 130 is received through the unit 111.

Next, in ST406, the pseudo random number generation information synchronization unit 110 receives the pseudo random number generation information 130 received from the other pseudo random number generation device 100, the pseudo random number generation information 130 read from the pseudo random number generation information recording unit 103, and the pseudo random number. The number of devices for update input from the generation information input unit 101, the random number length, and the like are compared.
Next, when there is a change in the number of devices, in ST407, the pseudo random number generation information synchronization unit 110 receives the pseudo random number generation information 130 received from the other pseudo random number generation device 100 and the pseudo random number generation information recording unit 103 of the own device. The number of devices in the pseudo-random number generation information 130 read from is updated to the number of devices for update input from the pseudo-random number generation information input unit 101.
Next, when there is a change in the device ID of each pseudo-random number generation device 100, in ST408, the pseudo-random number generation information synchronization unit 110 receives the pseudo-random number generation information 130 received from another pseudo-random number generation device 100 and the own device. The device ID of the pseudo random number generation information 130 read from the pseudo random number generation information recording unit 103 is updated according to the number of devices for update input from the pseudo random number generation information input unit 101.
Next, when there is a change in the random number length, in ST409, the pseudo random number generation information synchronization unit 110 receives the pseudo random number generation information 130 received from another pseudo random number generation device 100 and the pseudo random number generation information recording unit 103 of the own device. The random number length of the pseudo random number generation information 130 read out from is updated to the update random number length input from the pseudo random number generation information input unit 101.
Next, in ST410, the pseudo random number generation information synchronization unit 110 adds the pseudo random number generation information 130 received from the other pseudo random number generation device 100 and the pseudo random number generation information 130 read from the pseudo random number generation information recording unit 103 of the own device. The longest generated random number length is selected from the generated generated random lengths, and the selected longest generated random number length is received from another pseudorandom number generation device 100 and the pseudorandom number generation of the own device The pseudorandom number generation information 130 read from the information recording unit 103 is written, and the generated random number length is updated.
Next, when there is a change in the pseudo-random number generation algorithm, in ST411, the pseudo-random number generation information synchronization unit 110 records the pseudo-random number generation information 130 received from the other pseudo-random number generation device 100 and the pseudo-random number generation information of its own device. The pseudorandom number generation algorithm of the pseudorandom number generation information 130 read from the unit 103 is updated to the update pseudorandom number generation algorithm input from the pseudorandom number generation information input unit 101.
Next, in ST412, the pseudorandom number generation information synchronization unit 110 transmits the update pseudorandom number generation information 130 to the pseudorandom number generation device 100 that is the synchronization destination via the communication unit 111.

Next, in ST413, the pseudo-random number generation information synchronization unit 110 determines whether the generated random number length before the update of the own device is the longest. If it is the longest, in ST418, the pseudo-random number generation information synchronization unit 110 stores pseudo-random number generation information 130 for update in the pseudo-random number generation information recording unit 103.
On the other hand, if the generated random number length before update is not the longest in ST413, in ST414, the pseudo random number generation unit 108 simulates the difference between the longest generated random number length and the generated random number length before updating its own device. Random numbers 133 are generated in order.
Next, in ST415, the pseudo random number generation unit 108 confirms whether the generated pseudo random number 133 is not the same value as any of the pseudo random numbers (pseudo random numbers generated in the past) stored in the pseudo random number recording unit 109. To do.
If a pseudo random number having the same value as the generated pseudo random number 133 exists in the pseudo random number recording unit 109 (YES in ST416), a pseudo random number at the next position is generated.
When the pseudo random number having the same value as the generated pseudo random number 133 does not exist in the pseudo random number recording unit 109 (NO in ST416), in ST417, the pseudo random number generating unit 108 generates the generated pseudo random number 133 for collision confirmation. Are all stored in the pseudo-random number recording unit 109.
After all the pseudo random numbers 133 of the generated random number length difference are stored in the pseudo random number recording unit 109, the pseudo random number generation information synchronization unit 110 in the pseudo random number generation information recording unit 103 updates the pseudo random number generation information in ST418. 130 is stored.

  Next, with reference to FIG. 14 and FIG. 15, the pseudo random number generation information synchronization processing of the pseudo random number generation device 100 that is the synchronization destination of the pseudo random number generation information 130 will be described.

In ST200 of FIG. 14, the synchronization-destination administrator 120 inputs the password 131 from the random number seed input / output unit 104.
Next, in ST201, the random number seed processing unit 105 reads the encrypted random number seed 132 from the random number seed recording unit 106.
Next, in ST202, the random number seed processing unit 105 generates a key from the password 131, and decrypts the random number seed 132 encrypted using the key.
If decryption of the encrypted random number seed 132 is successful (YES in ST452), the pseudorandom number generation information processing unit 102 reads the pseudorandom number generation information 130 from the pseudorandom number generation information recording unit 103 in ST453.
Next, in ST454, pseudo-random number generation information synchronization section 110 determines whether or not the synchronization request from synchronization source pseudo-random number generation information synchronization section 110 has been received through communication section 111, and if a synchronization request has been received (in ST454) YES), in ST455, the pseudo-random number generation information synchronization unit 110 transmits the current pseudo-random number generation information 130 to the other pseudo-random number generation device 100 serving as the synchronization source through the communication unit 111.
Next, in ST456, the pseudorandom number generation information synchronization unit 110 receives the update pseudorandom number generation information 130 from the other pseudorandom number generation device 100 serving as the synchronization source through the communication unit 111.

Next, in ST457, the pseudo-random number generation information synchronization unit 110 compares the generated random number length indicated in the update pseudo-random number generation information 130 with the generated random number length before updating itself, and When the generated random number length indicated in the pseudo-random number generation information 130 is the same as the generated random number length before updating the own device, that is, when the generated random length length before updating the own device is the longest. In (NO in ST457), in ST462, the pseudorandom number generation information synchronization unit 110 stores the pseudorandom number generation information 130 for update in the pseudorandom number generation information recording unit 103.
On the other hand, if the generated random number length before the update of the own device is not the longest in ST457 (YES in ST457), the pseudorandom number generation unit 108 has generated the information indicated in the update pseudorandom number generation information 130 in ST458. A pseudo-random number 133 of the difference between the random number length and the generated random number length before update of the own device is sequentially generated.
Next, in ST459, the pseudo random number generation unit 108 checks whether the generated pseudo random number 133 is the same value as any of the pseudo random numbers (pseudo random numbers generated in the past) stored in the pseudo random number recording unit 109 To do.
When a pseudo random number having the same value as the generated pseudo random number 133 exists in the pseudo random number recording unit 109 (YES in ST460), a pseudo random number at the next position is generated.
When the pseudo random number having the same value as the generated pseudo random number 133 does not exist in the pseudo random number recording unit 109 (NO in ST460), in ST461, the pseudo random number generating unit 108 generates the generated pseudo random number 133 for collision confirmation. Are all stored in the pseudo-random number recording unit 109.
After all the pseudo random numbers 133 of the generated random number length difference are stored in the pseudo random number recording unit 109, in ST462, the pseudo random number generation information synchronization unit 110 stores the pseudo random number generation information for update in the pseudo random number generation information recording unit 103. 130 is stored.

  As described above, in the present embodiment, setting information necessary for generating pseudo-random numbers can be synchronized at any time, so the number of pseudo-random number generators can be changed, the length of random numbers generated at one time, or pseudo-random number generation It is possible to easily change the algorithm.

  As described above, in the present embodiment, the pseudo-random number generation device that generates pseudo-random numbers has a pseudo-random number generation information synchronization processing unit that synchronizes pseudo-random number generation information among a plurality of pseudo-random number generation devices at an arbitrary time. did.

Finally, a hardware configuration example of the pseudorandom number generation device 100 shown in the first and second embodiments will be described.
FIG. 17 is a diagram illustrating an example of hardware resources of the pseudorandom number generation device 100 illustrated in the first and second embodiments.
Note that the configuration in FIG. 17 is merely an example of the hardware configuration of the pseudorandom number generation device 100, and the hardware configuration of the pseudorandom number generation device 100 is not limited to the configuration described in FIG. There may be.

In FIG. 17, the pseudorandom number generation device 100 includes a CPU 911 (also referred to as a central processing unit, a central processing unit, a processing unit, an arithmetic unit, a microprocessor, a microcomputer, and a processor) that executes a program.
The CPU 911 is connected to, for example, a ROM (Read Only Memory) 913, a RAM (Random Access Memory) 914, a communication board 915, a display device 901, a keyboard 902, a mouse 903, and a magnetic disk device 920 via a bus 912. Control hardware devices.
Further, the CPU 911 may be connected to an FDD 904 (Flexible Disk Drive), a compact disk device 905 (CDD), a printer device 906, and a scanner device 907. Further, instead of the magnetic disk device 920, a storage device such as an optical disk device or a memory card (registered trademark) read / write device may be used.
The RAM 914 is an example of a volatile memory. The storage media of the ROM 913, the FDD 904, the CDD 905, and the magnetic disk device 920 are an example of a nonvolatile memory. These are examples of the storage device.
A communication board 915, a keyboard 902, a mouse 903, a scanner device 907, an FDD 904, and the like are examples of input devices.
The communication board 915, the display device 901, the printer device 906, and the like are examples of output devices.

  As shown in FIG. 1, the communication board 915 is connected to a network. For example, the communication board 915 may be connected to a LAN (local area network), the Internet, a WAN (wide area network), or the like.

The magnetic disk device 920 stores an operating system 921 (OS), a window system 922, a program group 923, and a file group 924.
The programs in the program group 923 are executed by the CPU 911 using the operating system 921 and the window system 922.

The RAM 914 temporarily stores at least part of the operating system 921 program and application programs to be executed by the CPU 911.
The RAM 914 stores various data necessary for processing by the CPU 911.

The ROM 913 stores a BIOS (Basic Input Output System) program, and the magnetic disk device 920 stores a boot program.
When the pseudo random number generation device 100 is activated, the BIOS program in the ROM 913 and the boot program in the magnetic disk device 920 are executed, and the operating system 921 is activated by the BIOS program and the boot program.

  The program group 923 stores programs that execute the functions described as “˜unit” and “˜means” in the description of the first and second embodiments. The program is read and executed by the CPU 911.

In the description of the first and second embodiments, the file group 924 includes “determination of”, “calculation of”, “comparison of”, “encryption of”, “decryption of”, “ Information, data, signal values, variable values, and parameters indicating the results of the processing described as "update", "setting of", "registration of", "selection of", etc. ~ "Database" is stored as each item.
The “˜file” and “˜database” are stored in a recording medium such as a disk or a memory. Information, data, signal values, variable values, and parameters stored in a storage medium such as a disk or memory are read out to the main memory or cache memory by the CPU 911 via a read / write circuit, and extracted, searched, referenced, compared, and calculated. Used for CPU operations such as calculation, processing, editing, output, printing, and display.
Information, data, signal values, variable values, and parameters are stored in the main memory, registers, cache memory, and buffers during the CPU operations of extraction, search, reference, comparison, calculation, processing, editing, output, printing, and display. It is temporarily stored in a memory or the like.
The arrows in the flowcharts described in the first and second embodiments mainly indicate input / output of data and signals. The data and signal values are the memory of the RAM 914, the flexible disk of the FDD904, the compact disk of the CDD905, and the magnetic field. Recording is performed on a recording medium such as a magnetic disk of the disk device 920, other optical disks, mini disks, DVDs, and the like. Data and signals are transmitted online via a bus 912, signal lines, cables, or other transmission media.

  In addition, in the description of the first and second embodiments, what is described as “to part” and “to means” may be “to circuit”, “to device”, and “to device”. It may be “˜step”, “˜procedure”, “˜processing”. That is, what is described as “˜unit” and “˜means” may be realized by firmware stored in the ROM 913. Alternatively, it may be implemented only by software, only hardware such as elements, devices, substrates, wirings, etc., or a combination of software and hardware, and further a combination of firmware. Firmware and software are stored as programs in a recording medium such as a magnetic disk, a flexible disk, an optical disk, a compact disk, a mini disk, and a DVD. The program is read by the CPU 911 and executed by the CPU 911. In other words, the program causes the computer to function as “to unit” and “to means” in the first and second embodiments. Alternatively, the procedures and methods of “˜unit” and “˜means” of the first and second embodiments are executed by a computer.

  As described above, the pseudo random number generation device 100 shown in the first and second embodiments includes a CPU as a processing device, a memory as a storage device, a magnetic disk, a keyboard as an input device, a mouse, a communication board, and a display device as an output device, A computer including a communication board and the like, and as described above, functions indicated as “˜unit” and “˜means” are realized by using these processing devices, storage devices, input devices, and output devices.

1 is a diagram illustrating an example of the overall configuration of a key generation system according to Embodiment 1. FIG. FIG. 4 shows an example of pseudorandom number generation information according to the first embodiment. FIG. 4 is a diagram for explaining a pseudo-random number distribution method according to the first embodiment. FIG. 3 is a diagram illustrating a configuration example of a pseudo random number generation device according to the first embodiment. FIG. 3 is a flowchart showing an example of initial processing of the pseudorandom number generation device according to the first embodiment. FIG. 3 is a flowchart showing an example of initial processing of the pseudorandom number generation device according to the first embodiment. FIG. 3 is a flowchart showing an example of random number generation processing of the pseudorandom number generation device according to the first embodiment. FIG. 3 is a flowchart showing an example of random number generation processing of the pseudorandom number generation device according to the first embodiment. FIG. 3 is a flowchart showing an example of random number generation processing of the pseudorandom number generation device according to the first embodiment. FIG. 4 is a flowchart showing an example of termination request processing of the pseudorandom number generation device according to the first embodiment. The flowchart figure which shows the example of the pseudorandom number generation information synchronous process of the pseudorandom number generation apparatus which concerns on Embodiment 2. FIG. The flowchart figure which shows the example of the pseudorandom number generation information synchronous process of the pseudorandom number generation apparatus which concerns on Embodiment 2. FIG. The flowchart figure which shows the example of the pseudorandom number generation information synchronous process of the pseudorandom number generation apparatus which concerns on Embodiment 2. FIG. The flowchart figure which shows the example of the pseudorandom number generation information synchronous process of the pseudorandom number generation apparatus which concerns on Embodiment 2. FIG. The flowchart figure which shows the example of the pseudorandom number generation information synchronous process of the pseudorandom number generation apparatus which concerns on Embodiment 2. FIG. FIG. 4 is a diagram illustrating a configuration example of a pseudo random number generation device according to a second embodiment. The figure which shows the hardware structural example of the pseudorandom number generation apparatus which concerns on Embodiment 1,2.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 100 Pseudorandom number generation apparatus, 101 Pseudorandom number generation information input part, 102 Pseudorandom number generation information processing part, 103 Pseudorandom number generation information recording part, 104 Random number seed input / output part, 105 Random number seed processing part, 106 Random number seed recording part, 107 Pseudorandom number output unit, 108 pseudorandom number generation unit, 109 pseudorandom number recording unit, 110 pseudorandom number generation information synchronization unit, 111 communication unit, 120 administrator, 131 password, 132 random number seed, 133 pseudorandom number, 200 key generation device, 300 Key, 400 data communication path.

Claims (15)

A pseudo-random number generator for generating pseudo-random numbers,
A random number seed value recording unit for recording a random number seed value common to other pseudo-random number generation devices;
A random number generation algorithm common to other pseudo random number generation devices, a random data length common to other pseudo random number generation devices, and an assigned random number specifying value for specifying an assigned pseudo random number assigned to the own device are indicated. A pseudo-random number generation information recording unit for recording pseudo-random number generation information;
Using the random number seed value, the random number generation algorithm sequentially generates pseudo random numbers corresponding to the random data length, and the generated pseudo random numbers are assigned with the generation order corresponding to the assigned random number specific value. A pseudo-random number generation device comprising a pseudo-random number generation unit that extracts a pseudo-random number. The pseudo-random number generator is
Independently from the generation of pseudo-random numbers in other pseudo-random number generation devices, pseudo-random numbers corresponding to the random data length are sequentially generated, and the generated pseudo-random numbers have a generation order corresponding to the assigned random number specific value. The pseudo random number generation device according to claim 1, wherein the pseudo random number is extracted as the assigned pseudo random number. The pseudorandom number generator further includes:
A pseudo random number recording unit that records the pseudo random number generated by the pseudo random number generation unit;
The pseudo-random number generator is
Each time a pseudo-random number is generated, it is determined whether the generated pseudo-random number matches one of the recorded pseudo-random numbers recorded in the pseudo-random number recording unit, and the generated pseudo-random number is one of the recorded pseudo-random numbers. The pseudorandom numbers that match the recorded pseudorandom numbers are excluded, and the generated pseudorandom numbers corresponding to the assigned random number specific value are extracted from the generated pseudorandom numbers as the allocated pseudorandom numbers. The pseudo-random number generation device according to claim 1, wherein the pseudo-random number generation device is provided. The pseudo random number recording unit
The pseudo-random number generated by the pseudo-random number generator is recorded by excluding the pseudo-random number that is excluded as being coincident with the recorded pseudo-random number by the pseudo-random number generator. Generator. The pseudo-random number generator is
It belongs to a pseudo-random number generation group composed of N (N ≧ 2) pseudo-random number generators that sequentially generate pseudo-random numbers for a common random number data length using a common random number generation algorithm using a common random number seed value. ,
The pseudo-random number generation information recording unit
As the assigned random number specific value, record pseudo random number generation information indicating the number N of pseudo random number generation devices belonging to the pseudo random number generation group,
The pseudo-random number generator is
5. The pseudorandom numbers generated in order for the random number data length are sequentially generated, and the Nth generated pseudorandom number among the N pseudorandom numbers is extracted as the assigned pseudorandom number. The pseudorandom number generation device according to any one of the above. The pseudo-random number generator is
It belongs to a pseudo-random number generation group composed of N (N ≧ 2) pseudo-random number generators that sequentially generate pseudo-random numbers for a common random number data length using a common random number generation algorithm using a common random number seed value. ,
The pseudo-random number generation information recording unit
The number N of pseudo random number generation devices belonging to the pseudo random number generation group is indicated, and the rank m (1 ≦ m ≦ N) of the own device in N pseudo random number generation devices is indicated as the assigned random number specific value. Record pseudo-random number generation information,
The pseudo-random number generator is
5. The pseudo random numbers generated in order for the random number data length are sequentially generated, and the m-th pseudo random number generated among the N pseudo random numbers is extracted as the assigned pseudo random number. The pseudorandom number generation device according to any one of the above. The pseudorandom number generator further includes:
Other pseudo random number generation information stored in other pseudo random number generation devices is received from other pseudo random number generation devices, and the random number data length and assigned random number specified in the received other pseudo random number generation information are specified. Update at least one of the values, update at least one of the random number data length and the assigned random number specific value indicated in the pseudo random number generation information of the own device recorded in the random number generation information recording unit, and after the update The pseudorandom number generation device according to claim 1, further comprising a pseudorandom number generation information synchronization unit that transmits other pseudorandom number generation information to another pseudorandom number generation device. The pseudo-random number generation information recording unit
Record pseudo-random number generation information indicating the total amount of generated pseudo-random numbers generated by the pseudo-random number generator,
The pseudo-random number generation information synchronization unit
The other pseudo random number generation information stored in the other pseudo random number generation device is received from another pseudo random number generation device, and the total amount of generated pseudo random numbers shown in the received other pseudo random number generation information And another pseudo-random number generation so as to match the maximum generated data total amount among the pseudo-random number generated data total amount shown in the pseudo-random number generation information of the own device recorded in the random number generation information recording unit The pseudo-random number generated data total amount of the information and the pseudo-random number generation information of the own device is updated, and other updated pseudo-random number generation information is transmitted to another pseudo-random number generation device. Pseudo random number generator. The pseudo-random number generator is
When the maximum generated data total amount used for updating the pseudo random number generation information by the pseudo random number generation information synchronization unit is not the generated data total amount indicated in the pseudo random number generation information of the own device, the pseudo random number of the own device Generate a pseudo-random number of the difference between the generated data total amount shown in the generation information and the maximum generated data total amount,
The pseudorandom number generator further includes:
The pseudorandom number generation device according to claim 8, further comprising a pseudorandom number recording unit that records the pseudorandom number generated by the pseudorandom number generation unit. The pseudo-random number generator is
Each time a pseudo-random number is generated, it is determined whether the generated pseudo-random number matches one of the recorded pseudo-random numbers recorded in the pseudo-random number recording unit, and the generated pseudo-random number is one of the recorded pseudo-random numbers. , The pseudorandom number that matches the recorded pseudorandom number is excluded from the recording target of the pseudorandom number recording unit,
The pseudo-random number generation device according to claim 9, wherein the pseudo-random number generated by the pseudo-random number generation unit is recorded by excluding the pseudo-random number excluded from the recording target by the pseudo-random number generation unit. The pseudo-random number generation information recording unit
Record pseudo-random number generation information indicating the total amount of generated pseudo-random numbers generated by the pseudo-random number generator,
The pseudorandom number generator further includes:
In response to a request from another pseudo-random number generation device, the pseudo-random number generation information recorded in the random number generation information recording unit is transmitted to the other pseudo-random number generation device and updated by the other pseudo-random number generation device. Having a pseudo-random number generation information synchronization unit for receiving the updated pseudo-random number generation information,
The pseudo-random number generator is
The updated generated data total amount indicated in the updated pseudo random number generation information received by the pseudo random number generation information synchronization unit exceeds the generated data total amount before update indicated in the pre-update pseudo random number generation information. Generate a pseudo-random number of the difference between the total amount of generated data before update and the total amount of generated data after update,
The pseudorandom number generator further includes:
The pseudo-random number generation device according to claim 1, further comprising a pseudo-random number recording unit that records the pseudo-random number generated by the pseudo-random number generation unit. The pseudo-random number generator is
Each time a pseudo-random number is generated, it is determined whether the generated pseudo-random number matches one of the recorded pseudo-random numbers recorded in the pseudo-random number recording unit, and the generated pseudo-random number is one of the recorded pseudo-random numbers. , The pseudorandom number that matches the recorded pseudorandom number is excluded from the recording target of the pseudorandom number recording unit,
12. The pseudo-random number generation device according to claim 11, wherein the pseudo-random number generated by the pseudo-random number generation unit is recorded by excluding the pseudo-random number excluded from the recording target by the pseudo-random number generation unit. An information processing system including a plurality of pseudo-random number generators that generate pseudo-random numbers,
Each pseudo-random number generator is
A random number seed value recording unit for recording a random number seed value common to other pseudo-random number generation devices;
A random number generation algorithm common to other pseudo random number generation devices, a random data length common to other pseudo random number generation devices, and an assigned random number specifying value for specifying an assigned pseudo random number assigned to the own device are indicated. A pseudo-random number generation information recording unit for recording pseudo-random number generation information;
Using the random number seed value, the random number generation algorithm sequentially generates pseudo random numbers corresponding to the random data length, and the generated pseudo random numbers are assigned with the generation order corresponding to the assigned random number specific value. What is claimed is: 1. An information processing system comprising: a pseudo random number generation unit that extracts a pseudo random number. In each pseudorandom number generator,
The pseudo-random number generator is
Independently from the generation of pseudo-random numbers in other pseudo-random number generation devices, pseudo-random numbers corresponding to the random data length are sequentially generated, and the generated pseudo-random numbers have a generation order corresponding to the assigned random number specific value. The information processing system according to claim 13, wherein the information is extracted as the assigned pseudorandom number. In a pseudo random number generator that is a computer that generates pseudo random numbers,
A random number seed value acquisition process for acquiring the random number seed value from a random number seed value recording unit that records a random number seed value common to other pseudo-random number generation devices;
A random number generation algorithm common to other pseudo random number generation devices, a random data length common to other pseudo random number generation devices, and an assigned random number specifying value for specifying an assigned pseudo random number assigned to the own device are indicated. Pseudo-random number generation information reference processing for referring to pseudo-random number generation information;
Using the random number seed value, the random number generation algorithm sequentially generates pseudo random numbers corresponding to the random data length, and the generated pseudo random numbers are assigned with the generation order corresponding to the assigned random number specific value. A program for executing a pseudo-random number generation process for extracting as a pseudo-random number.

Images