International Association for Cryptologic Research

International Association
for Cryptologic Research


Paper: Security Analysis of NIST CTR-DRBG

Viet Tung Hoang , Florida State University
Yaobin Shen , Shanghai Jiao Tong Univeristy
DOI: 10.1007/978-3-030-56784-2_8 (login may be required)
Search ePrint
Search Google
Presentation: Slides
Conference: CRYPTO 2020
Abstract: We study the security of CTR-DRBG, one of NIST’s recommended Pseudorandom Number Generator (PRNG) designs. Recently, Woodage and Shumow (Eurocrypt’ 19), and then Cohney et al. (S&P’ 20) point out some potential vulnerabilities in both NIST specification and common implementations of CTR-DRBG. While these researchers do suggest counter-measures, the security of the patched CTR-DRBG is still questionable. Our work fills this gap, proving that CTR-DRBG satisfies the robustness notion of Dodis et al. (CCS’13), the standard security goal for PRNGs.
Video from CRYPTO 2020
  title={Security Analysis of NIST CTR-DRBG},
  author={Viet Tung Hoang and Yaobin Shen},