A Guideline on Pseudorandom Number Generation (PRNG) in the IoT

Kietzmann, Peter; Schmidt, Thomas C.; Wählisch, Matthias

doi:10.1145/3453159

DC Field	Value	Language
dc.contributor.author	Kietzmann, Peter	-
dc.contributor.author	Schmidt, Thomas C.	-
dc.contributor.author	Wählisch, Matthias	-
dc.date.accessioned	2021-03-31T15:21:13Z	-
dc.date.available	2021-03-31T15:21:13Z	-
dc.date.issued	2021-07-13	-
dc.identifier.issn	0360-0300	en_US
dc.identifier.uri	http://hdl.handle.net/20.500.12738/10763	-
dc.description.abstract	Random numbers are an essential input to many functions on the Internet of Things (IoT). Common use cases of randomness range from low-level packet transmission to advanced algorithms of artificial intelligence as well as security and trust, which heavily rely on unpredictable random sources. In the constrained IoT, though, unpredictable random sources are a challenging desire due to limited resources, deterministic real-time operations, and frequent lack of a user interface. In this paper, we revisit the generation of randomness from the perspective of an IoT operating system (OS) that needs to support general purpose or crypto-secure random numbers. We analyse the potential attack surface, derive common requirements, and discuss the potentials and shortcomings of current IoT OSs. A systematic evaluation of current IoT hardware components and popular software generators based on well-established test suits and on experiments for measuring performance give rise to a set of clear recommendations on how to build such a random subsystem and which generators to use.	en_US
dc.description.sponsorship	Bundesministerium für Bildung und Forschung	en_US
dc.language.iso	en_US	en_US
dc.publisher	Association for Computing Machinery	en_US
dc.relation.ispartof	ACM computing surveys	en_US
dc.subject	Computer Science	en_US
dc.subject	Cryptography and Security	en_US
dc.subject.ddc	004: Informatik	en_US
dc.title	A Guideline on Pseudorandom Number Generation (PRNG) in the IoT	en_US
dc.type	Article	en_US
tuhh.container.endpage	112:38	en_US
tuhh.container.issue	4	en_US
tuhh.container.startpage	112:1	en_US
tuhh.container.volume	56	en_US
tuhh.oai.show	true	en_US
tuhh.publication.institute	Fakultät Technik und Informatik	en_US
tuhh.publication.institute	Department Informatik	en_US
tuhh.publisher.doi	10.1145/3453159	-
tuhh.publisher.url	http://arxiv.org/abs/2007.11839v2	-
tuhh.relation.ispartofseriesnumber	article number : 112. Printversion erscheint: Jul-2022. Preprint: http://arxiv.org/abs/2007.11839v2. Verlagsversion: https://doi.org/10.1145/3453159.	en_US
tuhh.type.opus	(wissenschaftlicher) Artikel	-
dc.relation.project	Verbundprojekt: Privacy-Integrated design and Validation in the constrained IoT - PIVOT; Teilvorhaben: Eingebettete Sicherheit für Inhaltsprojekte	en_US
dc.type.casrai	Journal Article	-
dc.type.dini	article	-
dc.type.driver	article	-
dc.type.status	info:eu-repo/semantics/publishedVersion	en_US
dcterms.DCMIType	Text	-
item.creatorGND	Kietzmann, Peter	-
item.creatorGND	Schmidt, Thomas C.	-
item.creatorGND	Wählisch, Matthias	-
item.fulltext	No Fulltext	-
item.creatorOrcid	Kietzmann, Peter	-
item.creatorOrcid	Schmidt, Thomas C.	-
item.creatorOrcid	Wählisch, Matthias	-
item.grantfulltext	none	-
item.cerifentitytype	Publications	-
item.languageiso639-1	en_US	-
item.openairecristype	http://purl.org/coar/resource_type/c_6501	-
item.openairetype	Article	-
crisitem.author.dept	Department Informatik	-
crisitem.author.dept	Department Informatik	-
crisitem.author.orcid	0000-0002-0956-7885	-
crisitem.author.parentorg	Fakultät Technik und Informatik	-
crisitem.author.parentorg	Fakultät Technik und Informatik	-
crisitem.project.funder	Bundesministerium für Bildung und Forschung	-
Appears in Collections:	Publications without full text