Crypto Quantique launches open-source randomness test suite for PUFs
Crypto Quantique, a provider of quantum-driven security for the Internet of Things (IoT), has introduced a specialised randomness test suite for Physical Unclonable Functions (PUFs). Named TuRiNG, this suite tackles the unique challenges associated with testing PUFs, which are increasingly embedded in semiconductors to generate secure, regenerable random numbers.
These numbers are essential for establishing unique device identities and generating cryptographic keys, both crucial for device security.
Unlike conventional Random Number Generators (RNGs), PUFs generate a fixed-length output, rendering standard tests insufficient for assessing randomness – a critical element in establishing a secure device root-of-trust (RoT). To address this, the TuRiNG suite adapts tests from the NIST 800-22 standard, modifying them to account for the distinctive characteristics of PUFs, such as spatial dependencies and their limited output length.
One of the key innovations in TuRiNG is a test specifically designed to ensure the independence of PUF outputs, vital for maintaining cryptographic security by detecting any correlated outputs. The suite is both thorough and practical, ensuring that PUFs fulfil randomness requirements without necessitating excessive data collection. It also includes tests in various data orderings to detect potential spatial correlations in PUF outputs.
By reducing the number of bits required for certain tests, TuRiNG makes the testing process more efficient, lowering the risk of inaccurately assessing PUF quality. This advancement is set to transform the validation of randomness in PUFs, providing a dependable method for safeguarding cryptographic systems in IoT devices.