| 发明名称 |
Random number generation failure detection and entropy estimation |
| 摘要 |
In accordance with one or more aspects, an initial output string is generated by a random number generator. The initial output string is sent to a random number service, and an indication of failure is received from the random number service if the initial output string is the same as a previous initial output string received by the random number service. Operation of the device is ceased in response to the indication of failure. Additionally, entropy estimates for hash values of an entropy source can be generated by an entropy estimation service based on hash values of various entropy source values received by the entropy estimation service. The hash values can be incorporated into an entropy pool of the device, and the entropy estimate of the pool being updated based on the estimated entropy of the entropy source. |
| 申请公布号 |
US9026571(B2) |
申请公布日期 |
2015.05.05 |
| 申请号 |
US200812258997 |
申请日期 |
2008.10.27 |
| 申请人 |
Microsoft Technology Licensing, LLC |
发明人 |
Ellison Carl M. |
| 分类号 |
G06F7/58 |
主分类号 |
G06F7/58 |
| 代理机构 |
|
代理人 |
Drakos Kate;Minhas Micky |
| 主权项 |
1. A method implemented in a device, the method comprising:
generating a hash value for a value of an entropy source of the device; sending the hash value to an entropy estimation service; receiving, from the entropy estimation service, an entropy estimate for the value that is based on both the hash value and hash values previously received by the entropy estimation service; incorporating the hash value into an entropy pool to be used by the random number generator; generating a new entropy estimate for the entropy pool based on the entropy estimate for the value; if the new entropy estimate for the entropy pool satisfies a threshold entropy estimate that is maintained by the entropy pool, then:
generating an initial output string with a size of larger than a byte by a random number generator;sending the initial output string to a random number service;receiving, from the random number service, an indication of failure of the random number generator if the initial output string is the same as a previous initial output string received by the random number service; andre-initializing the random number generator in response to the indication of failure. |
| 地址 |
Redmond WA US |
