security

Many RNG systems rely on protection via physical security, draw and audit procedures, and isolated draw environments. These provide a feeling of security. However RNGs are computer systems that can be broken into despite protective security. They require integrity solutions from within, fraud detection built into the RNG that will also catch attacks from insiders.

Traditional RNG - vulnerable

These systems rely on a chain of custody – reliance on the RNG provider, on the certification authority, on the computer’s physical security, on the draw procedures, on the personnel, etc. If any point in the chain breaks down, security is compromised but the loss in security may not be visible– making such systems vulnerable to insider fraud.

Tamperproof RNG - anti-fraud and anti-fault

The Szrek RNG system has fraud detection in addition to preventive security. Cryptographic hardware and algorithms are used to create proof of integrity (nonrepudiation of draws). The integrity of every draw is verifiable anytime on an independent system. If any link in the chain of custody is broken, it is detected.

All RNG manipulations and fraud are detected!

Tamperproof RNG - anti-fraud and anti-fault

Why we need RNG with cryptographic integrity verification

To immediately detect fraudulent intrusion to your RNG.

Skilled insiders can fix the draw results. You need to detect any fraudulent activity and act on it immediately, to prevent RNG fraud. CBS news Szrek article
To verify and demonstrate the integrity of each and every draw.

Circumstantial evidence may be insufficient to detect fraud. And because all results are possible, you may need to prove the legitimacy of questionable draws e.g. identical draws on proximate days. The Telegraph
To avoid using faulty hardware for electronic draws.

Defective hardware can lead to non-random and repetitive draws. Szrek article
To guarantee 100% fraud detection and serve as a fraud deterrent.

A person will only commit a crime if they perceive that they have a good chance of success; detection works as a fraud deterrent. NBER
To provide admissible proof of fraud in litigation.

Our random numbers are generated using digital signatures, which in many countries constitute legal evidence. American Bar Association

FAQ

traditional RNG - vulnerable

vectors of attack

tamperproof RNG - anti fraud and anti fault

Comparing features

Anti-fraud and fault RNG is future proof

Draw time substitution after the results are generated

The time stamp for offline draws can be altered, meaning draw results can be known before they are published.

Hardware substitution for alternative hardware that produces predictable results

Such substitution may go unnoticed unless there is a way to identify the hardware used for each draw

Substitution of numbers drawn after the results are generated

An insider can substitute the winning numbers and this can go unnoticed if the RNG system does not provide verification methods and the results are not consistently verified.

Software substitution during initial delivery, during maintenance, or later

Certification, pre-post testing, verification of program checksums, system scans, verification tests, and post-mortem testing may not find the hidden code.

Phishing or attempting multiple RNG generations to obtain desired outcomes

Traditional RNGs allow for multiple generations and it may be impossible to know how many have occurred.

Hardware deterioration results in hardware not performing RNG functions safely or properly

Traditional RNGs may not have specific hardware verification tests in place.

Inadequate RNG design & implementation detection of software and hardware errors and malfunctions

Software designed to check for errors, detect hardware issues and malfunction

FAQ

Does certification ensure RNG security?

Certifying an RNG does not usually address security. Certification is important and it is typically done to guarantee randomness, but rarely does it address RNG security. Hence security must be addressed specifically and in a different way.

What kind of security measures are there to protect an RNG?

RNG Vendors work with lotteries to establish many important preventive security features that are aimed at limiting access to the RNG (not allowing for an open network, password protection, locks and keys, use of various users to oversee the draw). By limiting access, they protect the RNG from many types of attacks. However, these systems are vulnerable to some types of attacks, particularly attacks from insiders.

We also introduce protective measures, but our security offers a solution that rests within the system – this is why we say it is a different paradigm. Our technology combines cryptographic hardware and software solutions that enable us to detect traces of any manipulation to the RNG, without relying on anything outside of the system. Manipulations cannot be erased or hidden without leaving a trace, unlike those used by other methods of logs and traces, so trying to break into the RNG will always be useless!

What are the limitations of preventive security?

The industry has gained experience from the recent Hot Lotto fraud and other incident about how to respond to known vectors of attack. Although far from perfect, we have some methods for trying to address these attacks. However, with advances in technology there may be new methods of attack forthcoming, and systems are vulnerable to these attacks particularly if they are executed by skilled insiders. This is the limitation of preventive methods – you can only try to prevent against known methods of attack.

This is why you need a methodology that protects against all vectors of attack, known or unknown. Our RNG technology detects every manipulation to the RNG because any manipulation to software, hardware, or otherwise would leave a trace and affect its functioning, causing the RNG and Systemic Independent Audit to have different draw results.

What type of audit is available for RNG systems?

Some people believe that having an auditor present during the draw is sufficient for RNG security, because the auditor by witnessing the draw can verify data consistency and ensure that procedures are followed. However an auditor may not be able to detect what is not visible. For other areas in the lottery, such as gaming systems and lottery tickets, independent system verification is required.

The Szrek2Solutions System offers Systemic Independent Audit that verifies the inner-workings of the RNG, rather the external processes that were used. The Systemic Independent Audit actually uses an independent system to recreate the draw based on the data that the RNG created. This Systemic Independent Audit will recreate the exact same output if the draw was not manipulated. If there was any manipulation, this would affect the data created by the RNG, and then the Systemic Independent Audit would recreate a different draw, providing evidence of tampering with the system.

Recent News

security

Why we need RNG with cryptographic integrity verification

FAQ

traditional RNG - vulnerable

vectors of attack

tamperproof RNG - anti fraud and anti fault