Earlier this year, the U.S. National Institute of Standards and Technology (NIST) released a revised version of Special Publication 800-90, a document that specifies four methods for generating random numbers using Deterministic Random Bit Generators (DRBGs). One of the DRBGs, an elliptic curve method known as Dual_EC_DRBG, is facing scrutiny over the mathematical constants that are contained in the specification. Cryptographers have speculated that these constants would allow someone in possession of a corresponding set of unknown numbers to predict the output of the DRBG. Cryptographic algorithms relying on a compromised DRBG could be more easily attacked and likely broken. Read more  

IntelliShield Analysis: Further cryptanalysis or a confirmation from the DRBG designers will be required before scrutiny of the Dual_EC_DRBG is dispelled. It is not clear whether the unexplained constants were chosen to strengthen the specification, much like the rearranged S-boxes provided by the National Security Agency during the development of the Data Encryption Standard, or if the constants were chosen to create a backdoor to predict the DRBG output. Because the elliptic curve DRBG is one of four options listed in Special Publication 800-90, other options exist to implement a standards-compliant random number algorithm without using the suspicious method. Before implementing cryptography that is based on Special Publication 800-90, especially in light of this discovery, proper risk analysis should be undertaken.