Thursday, September 3 • 10:55am - 11:25am
RISC-V True Random Number Generation: Probably Too Important to be Left to Chance - Markku-Juhani O. Saarinen, PQShield Ltd.

Crypto Task Group's proposed RISC-V True Random Number Generator (TRNG) architecture breaks with previous ISA TRNG practice by splitting the Entropy Source (ES) component away from cryptographic PRNGs into a separate interface, and in its use of polling. We describe the interface, its use in cryptography, and the rationale behind its engineering choices. This design is informed by lessons learned from earlier mainstream ISAs, recently introduced SP 800-90B and FIPS 140-3 entropy audit requirements, AIS 31 and Common Criteria, current and emerging cryptographic needs such as post-quantum cryptography. We also introduce Minidice, a minimalistic TRNG reference implementation that uses the Entropy Source together with RISC-V AES instructions.

Markku-Juhani O. Saarinen

Staff Cryptography Architect, PQShield Ltd.
I started as a cryptographer and a security engineer in 1997 as one of the early employees of SSH Communications Security in Helsinki. There I helped to design the now-ubiquitous SSH2 protocol. In my late 20s, I drifted into the world of exploits and security consulting (mainly in...

