WO2019080109A1 - Procédé et système de génération de nombre aléatoire pour terminal - Google Patents

Procédé et système de génération de nombre aléatoire pour terminal

Info

Publication number
WO2019080109A1
WO2019080109A1 PCT/CN2017/108072 CN2017108072W WO2019080109A1 WO 2019080109 A1 WO2019080109 A1 WO 2019080109A1 CN 2017108072 W CN2017108072 W CN 2017108072W WO 2019080109 A1 WO2019080109 A1 WO 2019080109A1
Authority
WO
WIPO (PCT)
Prior art keywords
random number
terminal
true
generating
generator
Prior art date
Application number
PCT/CN2017/108072
Other languages
English (en)
Chinese (zh)
Inventor
彭波涛
Original Assignee
福建联迪商用设备有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 福建联迪商用设备有限公司 filed Critical 福建联迪商用设备有限公司
Priority to CN201780001454.2A priority Critical patent/CN107980135B/zh
Priority to PCT/CN2017/108072 priority patent/WO2019080109A1/fr
Publication of WO2019080109A1 publication Critical patent/WO2019080109A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/606Protecting data by securing the transmission between two devices or processes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F7/00Methods or arrangements for processing data by operating upon the order or content of the data handled
    • G06F7/58Random or pseudo-random number generators
    • G06F7/588Random number generators, i.e. based on natural stochastic processes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds

Definitions

  • the present invention relates to the field of terminal security, and in particular, to a method and system for generating a random number of a terminal.
  • Random numbers such as: 1. For generating a key pair, according to the key management specification, random number generation must be used to ensure that the content of the key is unpredictable and undetectable; The process for encrypting data fills the data, ensuring the same data to be encrypted, and the result of each encryption is different, thereby preventing replay attacks; 3. For the identity authentication system, using the random number as a challenge factor to send to The other party to the communication asks the other party to return the correct response. The role of random numbers is to ensure that the problem with each challenge is "random".
  • Common random number generators include two types: a pseudo random number generator and a hardware random number generator.
  • the pseudo random number generator is implemented by a software-only algorithm. According to the input random number seed, a random number sequence is generated according to a certain generation rule.
  • the algorithm of this random number generator is usually fixed, such as the pseudo-random number function that comes with the standard C library. If the seed is fixed, the generated random number sequence is also fixed.
  • Hardware random number generator (English: hardware random number generator), also known as True Random Number Generator (TRNG) is a device that generates random numbers through physical processes rather than computer programs. Such devices are typically based on microscopic phenomena that produce low-level, statistically random "noise” signals such as thermodynamic noise, photoelectric effects, and quantum phenomena. These physical processes are theoretically completely unpredictable and have been confirmed by experiments. By repeatedly sampling these random signals, a series of random numbers are generated.
  • TRNG True Random Number Generator
  • a pseudo-random number generator since the algorithm and sequence for generating a random number are fixed, so as long as the first random number seed can be obtained, theoretically, all subsequent generations can be derived.
  • the random number sequence so the "unpredictable” nature of the subsequently generated random number cannot be satisfied. And to ensure The "unpredictability" of random seed seeds requires the use of random numbers as seeds, thus forming the paradox of "chicken or egg first.”
  • pseudo-random numbers are usually applied to situations where security requirements are not particularly strict, and a seed is randomly set by software (for example, the system is used as a seed), but the seed can be analyzed. For devices with high security requirements such as financial POS terminals, the requirements cannot be met.
  • the hardware random number generator is not stable enough to ensure that the random number generated each time is sufficiently random, because random signals such as natural noise are not always always random. In order to ensure that a sufficiently stable random signal is collected, it is often necessary to down-convert the CPU to achieve a random number, which will affect the speed of the terminal.
  • the technical problem to be solved by the present invention is to provide a method and system for generating a random number of a terminal to ensure unpredictability and randomness of the generated random number.
  • a method for generating a terminal random number includes:
  • the terminal generates a random number sequence by using a pseudo random number generator with the received true random number as a random number seed.
  • a system for generating a random number of a terminal comprising a hardware random number generator, a secure transmission module, and a final mountain
  • the hardware random number generator is configured to generate a true random number
  • the security transmission module is configured to securely transmit the true random number to the terminal
  • the terminal includes: [0023] a pseudo random number generator, configured to generate a random number sequence by using the received true random number as a random number seed.
  • the present invention has the following advantages:
  • the present invention generates a true random number by an external hardware random number generator, and transmits it to the terminal securely, and the terminal uses the pseudo random number generator as a random number seed to distribute a large number of random numbers. Number, to meet the needs of everyday applications.
  • the terminal uses the above method to generate a random number sequence. For the terminal manufacturer, it is not necessary to have a hardware random number generator in each terminal. In total, only one hardware random number generator can be configured to meet the requirements, thereby greatly reducing the cost of the terminal.
  • Peer using a random number as the random number seed of the terminal, can ensure the unpredictability of the random number seed and the random number sequence generated by the terminal according to this; further, the secure communication technology is used to realize the secure injection of the random number seed, Ensure that the random number seed of each terminal is unpredictable and undetectable, thus significantly improving the security of the random number seed.
  • the invention has high practicability in a terminal system with high safety requirements.
  • FIG. 1 is a schematic flow chart of a method for generating a random number of a terminal according to the present invention
  • FIG. 2 is a general block diagram of a random number generation system of the present invention
  • FIG. 3 is a schematic flow chart of a method according to Embodiment 1 of the present invention.
  • FIG. 4 is a schematic flowchart of a specific implementation of a random number secure transmission according to Embodiment 1 of the present invention
  • FIG. 5 is a schematic flowchart of a specific manner for a terminal to generate a large number of random numbers according to Embodiment 2 of the present invention
  • FIG. 6 is a schematic diagram of interaction between modules of a random number generating system according to Embodiment 4 of the present invention.
  • the most critical idea of the present invention is: generating a true random number by an external hardware random number generator, and arranging it The whole transmission is transmitted to the terminal, and the terminal uses the pseudo random number generator as a random number seed to disperse a large number of random numbers.
  • the invention has the advantages of significantly reducing the terminal cost and ensuring that the random number meets the requirements of unpredictability and randomness.
  • the present invention provides a method for generating a random number of a terminal, including:
  • the terminal generates a random number sequence by using a pseudo random number generator to receive the true random number as a random number seed
  • the securely transmitting the true random number to the terminal storage is specifically:
  • the terminal downloads and obtains the encrypted true random number
  • the terminal decrypts the encrypted true random number to obtain the true random number.
  • transmission to the terminal by means of encrypted communication ensures the security and unpredictability of the random number seed in the terminal.
  • the securely transmitting the true random number to the terminal is specifically:
  • the corresponding true random number is downloaded to the terminal through the encrypted communication method.
  • the true random number is obtained in a secure controlled environment before the terminal leaves the factory, and the opportunity for stealing illegal molecules is not provided, thereby further ensuring the security and unpredictability of the random number seed.
  • the cost of the built-in hardware random number generator module is required for each terminal, and only one set of hardware random number generators is dedicated to generate random number seeds for all terminals. That is, thus greatly reducing the hardware cost and maintenance cost of the terminal.
  • the true random number is an initial random number seed of the terminal
  • the method further includes:
  • the self-feedback mode is adopted, and a random number is generated in the terminal, and a random number of a preset number of bytes is selected from the first generated random number sequence as a new seed for generating the next random number, so that Constant self-feedback can make the process of generating the entire random number more random and unpredictable.
  • the number of bytes of the random number sequence generated by the terminal according to the true random number is greater than or equal to the preset number of bytes.
  • the preset number of bytes is 8 bytes.
  • the method further includes:
  • the hardware random number generator and the terminal acquire and store the transmission protection key in a secure controlled environment
  • the hardware random number generator uses the transmission protection key to encrypt the generated true random number in the plaintext form to obtain a true random number in the form of a ciphertext.
  • the terminal generates a random number sequence by using a pseudo random number generator to receive the true random number as a random number seed, which is specifically:
  • the terminal receives the true random number in the form of cipher text
  • the terminal decrypts the true random number in the ciphertext form by using a pre-stored transmission protection key to obtain a true random number in a plaintext form;
  • the terminal generates a random number sequence by using a pseudo random number generator with the true random number in the plaintext form as a random number seed.
  • the encrypted communication technology is used to implement the injection of the random number seed security to the terminal, ensuring that the random number seed of each terminal is unpredictable and undetectable, and the security of the random number seed is ensured.
  • the terminal is a financial POS terminal.
  • the present invention has a good application in a financial POS terminal having a high security level requirement.
  • the invention cleverly utilizes a combination of "soft” and “hard” to generate random numbers, which overcomes the disadvantages of the existing pseudo random number generator and the hardware random number generator, and is embodied in: [0071] (1) Since the random number seed is derived from an external hardware random number generator, and the communication process is encrypted, the "unpredictable” characteristic is satisfied, and the seed can be detected in the pseudo random number generator. The problem;
  • a self-feedback mode is employed. After the terminal generates a random number sequence, an 8-byte random number is selected from the newly generated random number sequence (if the newly generated random number sequence is less than 8 bytes, at least an 8-byte random number sequence is generated, and the required part is needed. Provided to the user) as a new seed for the next random number, so that continuous self-feedback can make the whole random number generation process more random and unpredictable.
  • the 128M bit random number sequence generated by the terminal is collected by the terminal, and analyzed and tested by an internationally dedicated random number analysis tool (for example, NIST STS-1.8 tool). The test passed, thus demonstrating the validity of the random number generator.
  • an internationally dedicated random number analysis tool for example, NIST STS-1.8 tool.
  • a system for generating a terminal random number comprising a hardware random number generator, a security transmission module, and a terminal mountain
  • the hardware random number generator is configured to generate a true random number
  • the security transmission module is configured to securely transmit the true random number to the terminal
  • the terminal includes:
  • a pseudo random number generator configured to generate a random number sequence by using the received true random number as a random number seed.
  • the security transmission module includes:
  • an encryption unit located in the hardware random number generator, configured to encrypt the true random number
  • a download unit located in the terminal, configured to download, by the terminal, the encrypted true random number
  • a decryption unit located at the terminal, configured to decrypt the encrypted true random number by the terminal, to obtain the true random number
  • the security transmission module is specifically configured to download a corresponding true random number to the terminal by using an encrypted communication method before the terminal leaves the factory.
  • the number of the terminals is two or more;
  • the hardware random number generator is specifically configured to generate a corresponding number of true random numbers by a hardware random number generator according to the number of terminals, and uniquely correspond to each terminal.
  • the true random number generated by the hardware random number generator is an initial random number seed of the terminal; [0090] the terminal further includes:
  • an intercepting module configured to intercept a random number of a preset number of bytes from the random number sequence as a new random number seed
  • the pseudo random number generator is further configured to generate a new random number sequence according to the new random number seed.
  • the pseudo random number generator is specifically configured to generate a random number sequence whose number of bytes is greater than or equal to the preset number of bytes according to the true random number.
  • the preset number of bytes is 8 bytes.
  • the hardware random number generator is further configured to acquire and store a transmission protection key in a secure controlled environment, and encrypt the generated true random number in a plaintext form by using the transmission protection key. Obtaining a true random number in cipher text form;
  • the terminal is further configured to acquire and store a transmission protection key in a secure controlled environment.
  • the terminal further includes:
  • a receiving module configured to receive a true random number in a cipher text form
  • a decryption module configured to decrypt the true random number in the ciphertext form by using a pre-stored transmission protection key to obtain a true random number in a plaintext form
  • the pseudo random number generator is specifically configured to generate a random number sequence by using a true random number in the plaintext form as a random number seed.
  • the terminal is a financial POS terminal.
  • this embodiment provides a method for generating a random number of a terminal, which is applicable to security, etc.
  • Terminals with higher requirements such as financial POS terminals, are used to ensure the unpredictability of random numbers generated by terminals.
  • This embodiment uses a terminal as a financial POS terminal as an example for description.
  • the method of this embodiment is implemented based on an external hardware random number generator and a plurality of POS terminals. Specifically, including:
  • S1 A true random number is generated by an external hardware random number generator.
  • the number of corresponding terminals is generated by the hardware random number generator to generate a unique corresponding random number seed for each POS terminal as the initial random number seed.
  • a POS terminal only needs one initial random number seed, and the number is small, and the daytime is also loose. Therefore, the hardware random number generator is preferably down-converted to acquire a sufficiently random signal as the initial random number seed of the POS terminal, thereby ensuring the high randomness of the initial random number seed.
  • the external hardware random number generator generates more than two true random numbers at a time to satisfy the batch.
  • the demand of the POS terminal improves the efficiency of assigning a random number seed to the terminal.
  • S2 Securely transmitting the true random number to the terminal.
  • the true random number generated by the hardware random number generator is transmitted to the POS terminal by using an encrypted communication method to ensure that the initial random number seed of the POS terminal is unpredictable and undetectable, and the security of the initial random number seed is ensured. .
  • S21 The hardware random number generator and the terminal acquire and securely store the transmission protection key in a secure controlled environment.
  • the same transmission protection key Kp conforming to the TDES (Triple Data Encryption Standard) requirement is set between the hardware random number generator and the target POS terminal.
  • the POS of some banks needs to use a parent POS to download the key required for the payment transaction to the target POS (the terminal of this embodiment) in a secure controlled environment. At this time, it can be used to encrypt the initial.
  • the TDES transport protection key Kp of the random number seed is downloaded and downloaded to ensure the high security and reliability of the encrypted random number seed key.
  • S22 The hardware random number generator uses the transmission protection key to encrypt the generated true random number in the plaintext form to obtain a true random number in the ciphertext form.
  • T DES transmission protection key Kp is used, and the TDES encryption algorithm is used, and the true random number in the plaintext form is used.
  • the ciphertext C is securely downloaded, and is stored securely.
  • S3 The terminal generates a random number sequence by using a pseudo random number generator and using the received true random number as a random number seed.
  • the terminal After receiving the encrypted true random number, the terminal obtains a true random number through decryption processing.
  • S31 The terminal decrypts the true random number in the ciphertext form by using the pre-stored transmission protection key to obtain a true random number in a plaintext form.
  • the target POS after receiving the ciphertext C, uses the TDES transmission protection key Kp to decrypt the received ciphertext C by using the TDES decryption algorithm, and obtains the data P1 after decryption.
  • S32 The terminal generates a random number sequence by using a pseudo random number generator to use the true random number in the plaintext form as a random number seed.
  • the data P1 is used as the initial random number seed of the target POS, and a large number of random numbers are generated by a software algorithm to meet the requirements of the application.
  • the embodiment is further extended according to the first embodiment, and a specific manner of generating a large number of random numbers by the terminal is added.
  • step S32 of the first embodiment specifically includes:
  • S321 The terminal uses the true random number as the initial random number seed to generate a random number sequence.
  • the data P1 is used as an initial random number seed, and a corresponding random number sequence is generated by a software algorithm.
  • the total number of bytes of the generated random number sequence is greater than or equal to a preset byte, such as 8 bytes.
  • Preset byte Set the number of bytes required based on the random number seed.
  • S322 intercepting the random number of the preset number of bytes from the random number sequence as a new random number seed
  • S323 The terminal generates a new random number sequence according to the new random number seed by using a pseudo random number generator.
  • the first generated ⁇ uses the seed obtained from the external hardware random number generating device, and subsequently generates ⁇ directly intercepts 8 bytes from the last generated random number sequence as a new seed, and then The software algorithm is used for distributed processing to obtain the required batch random number sequence.
  • the software algorithm is used for distributed processing to obtain the required batch random number sequence.
  • This embodiment corresponds to the first embodiment, and provides a system for generating a random number of a terminal, including a hardware random number generator, a security transmission module, and a plurality of terminals.
  • a description will be given by taking a POS device whose terminal has a higher security level as an example.
  • the hardware random number generator is configured to generate a true random number; the true random number is an initial random number seed of the terminal;
  • the hardware random number generator is specifically configured to generate, according to the number of terminals, a corresponding number of true random numbers by a hardware random number generator to uniquely correspond to each terminal.
  • the hardware random number generator is further configured to acquire and store a transmission protection key in a secure controlled environment, and encrypt the generated true random number in a plaintext form by using the transmission protection key , obtaining a true random number in cipher text form;
  • the security transmission module is configured to securely transmit the true random number to the terminal
  • the security transmission module is specifically configured to download a corresponding true random number to the terminal by using an encrypted communication method before the terminal leaves the factory.
  • the security transmission module specifically includes:
  • an encryption unit located in the hardware random number generator, configured to encrypt the true random number
  • the download unit is located at the terminal, and is used for downloading and obtaining the encrypted true random number by the terminal;
  • the decryption unit is located at the terminal, and is configured to decrypt the encrypted true random number by the terminal, and obtain the true random number.
  • the terminal includes:
  • a pseudo random number generator configured to generate a random number sequence by using the received true random number as a random number seed;
  • the terminal is further configured to acquire and store the transmission in a secure controlled environment. Protection key
  • the terminal further includes:
  • a receiving module configured to receive a true random number in a cipher text form
  • a decryption module configured to decrypt the true random number in the ciphertext form by using a pre-stored transmission protection key to obtain a true random number in a plaintext form
  • the pseudo random number generator is specifically configured to generate a random number sequence by using a true random number in the plaintext form as a random number seed.
  • the pseudo random number generator is further configured to generate a new random number sequence according to the new random number seed.
  • a sequence of random numbers whose number of bytes is greater than or equal to the preset number of bytes is generated.
  • the preset number of bytes is 8 bytes.
  • the terminal further includes:
  • an intercepting module configured to intercept a random number of a preset number of bytes from the random number sequence as a new random number seed.
  • This embodiment provides a random number system corresponding to the first embodiment and the second embodiment.
  • the system includes an external hardware random number generating device and a plurality of POS terminals 2.
  • the entire random number generation system includes the following modules:
  • the device internally contains:
  • hardware random number generator 1 responsible for generating a random number seed by hardware and then transmitting it to the encryption module;
  • Encryption Module 3 The module is responsible for encrypting the random number seed to obtain an encrypted random number seed. Then transmitted to the communication module A 41 in the communication module 4;
  • Communication module A 41 This module is responsible for transmitting the encrypted random number seed to each POS terminal; [0168] 2. POS terminal
  • the terminal internally contains:
  • communication module B 42 the module is responsible for receiving the encrypted random number seed from the external random number generating device, and then transmitting the encrypted random seed to the POS terminal;
  • decryption module 5 The module is responsible for decrypting the encrypted random number seed obtained from the communication module B, and obtaining a random number seed plaintext;
  • pseudo random number generator 6 responsible for reading the externally written random number seed (first generated, using the seed obtained from the external random number generating device, and subsequently generated ⁇ directly from the last generated random number sequence Intercept 8 bytes as a new seed), and then use software algorithm to perform distributed processing to obtain the required batch random number sequence;
  • the random number sequence uses the module 7: This module is responsible for reading the batch random number sequence ⁇
  • the method and system for generating a random number of a terminal not only greatly reduce the hardware cost and maintenance cost of the random number generated by the terminal; but also ensure the random number seed and the random number generated by the terminal accordingly.
  • the unpredictability of the sequence further, the random number generation process uses the secure communication technology to realize the safe injection of the random number seed, which can ensure that the random number seed of each terminal is unpredictable and undetectable, and significantly improves the random number seed again.
  • Security Further, through the self-feedback mode, the process of generating the entire random number becomes more random and unpredictable, and finally the random number used by the terminal is highly random and unpredictable.
  • the invention has high practicability in a terminal system with high security requirements.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Business, Economics & Management (AREA)
  • Software Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Accounting & Taxation (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Pure & Applied Mathematics (AREA)
  • Computational Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Mathematical Optimization (AREA)
  • Mathematical Analysis (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

La présente invention concerne un système et un procédé de génération de nombre aléatoire pour terminal. Le procédé consiste : à générer un nombre réellement aléatoire au moyen d'un générateur matériel de nombres aléatoires; à transmettre de manière sécurisée le nombre réellement aléatoire à un terminal; et à utiliser, par le terminal, le nombre réellement aléatoire reçu comme valeur de départ de nombre aléatoire afin de générer une séquence de nombres aléatoires au moyen d'un générateur de nombres pseudo-aléatoires. Selon le procédé et le système, le nombre réellement aléatoire est généré par un générateur matériel de nombres aléatoires externe et est transmis de manière sécurisée au terminal, et le terminal utilise le nombre réellement aléatoire comme valeur de départ de nombre aléatoire afin de disperser de nombreux nombres aléatoires au moyen du générateur de nombres pseudo-aléatoires. Par conséquent, le procédé réduit considérablement les coûts de terminal, et garantit que le nombre aléatoire satisfait aux exigences d'imprévisibilité et de caractère aléatoire.
PCT/CN2017/108072 2017-10-27 2017-10-27 Procédé et système de génération de nombre aléatoire pour terminal WO2019080109A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201780001454.2A CN107980135B (zh) 2017-10-27 2017-10-27 一种终端随机数发生的方法及系统
PCT/CN2017/108072 WO2019080109A1 (fr) 2017-10-27 2017-10-27 Procédé et système de génération de nombre aléatoire pour terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2017/108072 WO2019080109A1 (fr) 2017-10-27 2017-10-27 Procédé et système de génération de nombre aléatoire pour terminal

Publications (1)

Publication Number Publication Date
WO2019080109A1 true WO2019080109A1 (fr) 2019-05-02

Family

ID=62006123

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/108072 WO2019080109A1 (fr) 2017-10-27 2017-10-27 Procédé et système de génération de nombre aléatoire pour terminal

Country Status (2)

Country Link
CN (1) CN107980135B (fr)
WO (1) WO2019080109A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124370A (zh) * 2021-10-14 2022-03-01 阿里云计算有限公司 密钥生成方法及装置

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109495266B (zh) * 2018-12-25 2022-07-22 北京字节跳动网络技术有限公司 基于随机数的数据加密方法及装置
CN111708762B (zh) * 2020-06-18 2023-09-01 北京金山云网络技术有限公司 一种权限认证方法、装置及服务端设备

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1832396A (zh) * 2005-11-07 2006-09-13 北京浦奥得数码技术有限公司 一种伪随机数生成方法
WO2007026287A1 (fr) * 2005-08-30 2007-03-08 Koninklijke Philips Electronics N.V. Procede et dispositif de generation de germes dans un generateur de nombres aleatoires
CN105426158A (zh) * 2015-12-09 2016-03-23 福州瑞芯微电子股份有限公司 一种随机数产生方法及其装置
CN105763327A (zh) * 2014-12-16 2016-07-13 上海华虹集成电路有限责任公司 智能卡中安全的随机数产生方法
CN107133015A (zh) * 2017-04-11 2017-09-05 上海汇尔通信息技术有限公司 一种随机数生成方法及系统

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2008003438A (ja) * 2006-06-26 2008-01-10 Sony Corp 乱数生成装置、乱数生成制御方法、メモリアクセス制御装置、および、通信装置
US8019935B2 (en) * 2007-12-23 2011-09-13 Hitachi Global Storage Technologies Netherlands, B.V. Random number generation for a host system using a hard disk drive
CN102566968A (zh) * 2010-12-10 2012-07-11 上海华虹集成电路有限责任公司 一种产生真随机数的方法
CN103220270A (zh) * 2013-03-15 2013-07-24 福建联迪商用设备有限公司 密钥下载方法、管理方法、下载管理方法及装置和系统
CN104636115B (zh) * 2013-11-14 2017-12-15 国家电网公司 一种真随机数后处理装置及方法
CN104317551A (zh) * 2014-10-17 2015-01-28 北京德加才科技有限公司 一种超高安全的真随机数生成方法及真随机数生成系统
CN105743654A (zh) * 2016-02-02 2016-07-06 上海动联信息技术股份有限公司 一种pos机密钥远程下载的服务系统以及密钥下载方法

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007026287A1 (fr) * 2005-08-30 2007-03-08 Koninklijke Philips Electronics N.V. Procede et dispositif de generation de germes dans un generateur de nombres aleatoires
CN1832396A (zh) * 2005-11-07 2006-09-13 北京浦奥得数码技术有限公司 一种伪随机数生成方法
CN105763327A (zh) * 2014-12-16 2016-07-13 上海华虹集成电路有限责任公司 智能卡中安全的随机数产生方法
CN105426158A (zh) * 2015-12-09 2016-03-23 福州瑞芯微电子股份有限公司 一种随机数产生方法及其装置
CN107133015A (zh) * 2017-04-11 2017-09-05 上海汇尔通信息技术有限公司 一种随机数生成方法及系统

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124370A (zh) * 2021-10-14 2022-03-01 阿里云计算有限公司 密钥生成方法及装置

Also Published As

Publication number Publication date
CN107980135A (zh) 2018-05-01
CN107980135B (zh) 2021-11-09

Similar Documents

Publication Publication Date Title
US11818262B2 (en) Method and system for one-to-many symmetric cryptography and a network employing the same
KR101324825B1 (ko) 메시지 인증 코드 사전 연산 방법 및 시스템
US8959659B2 (en) Software authorization system and method
US11770370B2 (en) System and method for transferring data
CN102025503B (zh) 一种集群环境下数据安全实现方法和一种高安全性的集群
US11405203B2 (en) System and method for securely transferring data using generated encryption keys
US11012722B2 (en) System and method for securely transferring data
CN112469036B (zh) 一种消息加解密方法、装置、移动终端和存储介质
US10037441B2 (en) Bus protection with improved key entropy
WO2019080109A1 (fr) Procédé et système de génération de nombre aléatoire pour terminal
TW201523256A (zh) 確保機板上匯流排交易安全的系統和方法
EP2629225A1 (fr) Système, dispositifs et procédés pour l'exécution collaborative d'une application logicielle comportant au moins une instruction cryptée
US20160173282A1 (en) Key Management For On-The-Fly Hardware Decryption Within Integrated Circuits
Karanam et al. Performance Evaluation of Cryptographic Security Algorithms on Cloud
CN202043118U (zh) 一种高安全性的集群
Zhang et al. Proof-of-randomness protocol for blockchain consensus: the white paper version 1.0
Modh et al. Mobile Data Security using TPA Initiated Token Based Cryptography
Hussain et al. A smart card based security extension for the bitcoin wallets
Du et al. Key management scheme based on micro-certificate for Internet of Things
Shah et al. Implementing Enhanced AES for Cloud based Biometric SaaS on Raspberry Pi as a Remote Authentication Node
CN110555311A (zh) 一种基于纯软密码运算的电子签章系统安全设计方法及系统

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17929586

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17929586

Country of ref document: EP

Kind code of ref document: A1