本文件规定了用于密码应用的非确定性或确定性随机位生成器的评估方法。本文件中的规定使RBG的供应商能够向评估机构提交定义明确的安全声明，并应使评估人员或测试人员（例如验证机构）能够评估、测试、认证或拒绝这些声明。 本文档与实现无关。因此，它没有为随机位生成器的设计和实现决策提供具体指导。然而，设计和实施问题会影响本文件中RBG的评估，例如，因为它需要使用随机源的随机模型，并且因为任何此类模型都有与手头设备设计相关的技术参数支持。 本文档中评估的随机位生成器旨在输出均匀分布的位字符串。然而，取决于消费应用程序所需的随机数的分布，值得注意的是，消费应用程序可能需要额外的步骤（并且对于安全性非常关键）来将RBG产生的随机比特串转换为适合应用程序要求的分布的随机数。此类后续转换超出了本文档中执行的评估范围。交叉引用:ISO/IEC 18031:2011ISO/IEC 17825ISO/IEC 15408（所有部分）ISO/IEC 19790ISO/IEC 24759:2017ISO/IEC 18367:2016ANSI X9。82-4-2011购买本文件时可获得的所有现行修订均包含在购买本文件中。

This document specifies a methodology for the evaluation of non-deterministic or deterministic random bit generators intended to be used for cryptographic applications. The provisions given in this document enable the vendor of an RBG to submit well-defined claims of security to an evaluation authority and shall enable an evaluator or a tester, for instance a validation authority, to evaluate, test, certify or reject these claims. This document is implementation-agnostic. Hence, it offers no specific guidance on design and implementation decisions for random bit generators. However, design and implementation issues influence the evaluation of an RBG in this document, for instance because it requires the use of a stochastic model of the random source and because any such model is supported by technical arguments pertaining to the design of the device at hand. Random bit generators as evaluated in this document aim to output bit strings that appear evenly distributed. Depending on the distribution of random numbers required by the consuming application, however, it is worth noting that additional steps can be necessary (and can well be critical to security) for the consuming application to transform the random bit strings produced by the RBG into random numbers of a distribution suitable to the application requirements. Such subsequent transformations are outside the scope of evaluations performed in this document.Cross References:ISO/IEC 18031:2011ISO/IEC 17825ISO/IEC 15408 (all parts)ISO/IEC 19790ISO/IEC 24759:2017ISO/IEC 18367:2016ANSI X9.82-4-2011All current amendments available at time of purchase are included with the purchase of this document.