True Random Number Generator (TRNG)

1.5Tb MACsec ENGINE True Random Number Generators (TRNGs) are used to generate statistically independent streams of bits for various applications such as One Time Pad cryptography, key generation, seeds for PRNGs, masks to protect an implementation against side-channel analysis.

Random number generation is critical for any secure device. Random numbers are required for many protocols, such as key generation, key exchange, digital signature, encryption and more. Typical secure protocols like IPsec, MACsec, TLS/SSL or wireless use them during authentication/ key exchange and data streaming phases.

SCZ_IP_TRNG_DRBG is compliant with:

•   AIS -31 PTG.1, PTG.2, PTG.3
•   NIST FIPS 140-3
•   NIST SP 800-90B
•   NIST SP 800-90C
•   GM/T 0078
•   ISO/IEC 18031:2011

TRNG IP has passed NIST SP 800-22, OSCCA GM/T 005:2015, and AIS-31 statistical tests.

CTR-DRBG part of the TRNG IP is CAVP validated.

Ideal for

This TRNG can be used to generate extratemporaneously in secure protocols:

• Nonce involved in digital signatures
• Keys to be involved in key exchanges (Diffie-Hellman, Key Encapsulation Mechanisms, etc.)
• Unpredictable seeds to implement random masking or shuffling schemes. 

Other use-cases concern some algorithms initializations or timer applications:

• Optimization problems based on simulated annealing or genetic algorithms
•  Neural networks training
•  Numerical recipes, such as Monte-Carlo simulation or multidimensional integration
•  Random timers in communications protocols

• Fully digital, can be used seamlessly in any foundry and any technology node (no need to access Process Design Kit)
• Robust against process, temperature and voltage variations
• Formal security validation (stochastic model)
• Entropy source is fully digital and designed with standard cells library
• Can be implemented out of the box from RTL + SDC file
• Fully hardware cryptographic CTR-DRBG for high bit-rate random data
• Fully adaptable according to customer’s needs in terms of throughput, frequency and area
• Safety document package for ISO26262 available as an option
• Availability of different rationales as required by OSCCA schemes
• Multiple times silicon proven, down to 5nm
• Easy to integrate into the system
• AMBA (AXI) interface

• Defense
• IPSec (VPN)
• TLS/SSL
• Automotive
• IoT
• Wearable devices
• Embedded security

• Technical specifications
• TRNG IP
• RTL code of the entropy source
• Remote support for integration
• User guide
• RTL of the AMBA wrapper 
• SDC file
• Test report documentation
• Self-checking RTL Testbench based on reference scenario for simulation. (Simulation scripts are adapted to Questasim, any change of Simulator shall be taken care of by the Licensee)