{"id":"https://openalex.org/W2101774955","doi":"https://doi.org/10.1145/1609956.1609966","title":"Cryptanalysis of the random number generator of the Windows operating system","display_name":"Cryptanalysis of the random number generator of the Windows operating system","publication_year":2009,"publication_date":"2009-10-01","ids":{"openalex":"https://openalex.org/W2101774955","doi":"https://doi.org/10.1145/1609956.1609966","mag":"2101774955"},"language":"en","primary_location":{"id":"doi:10.1145/1609956.1609966","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1609956.1609966","pdf_url":null,"source":{"id":"https://openalex.org/S2642811","display_name":"ACM Transactions on Information and System Security","issn_l":"1094-9224","issn":["1094-9224","1557-7406"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Information and System Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054196786","display_name":"Leo Dorrendorf","orcid":null},"institutions":[{"id":"https://openalex.org/I197251160","display_name":"Hebrew University of Jerusalem","ror":"https://ror.org/03qxff017","country_code":"IL","type":"education","lineage":["https://openalex.org/I197251160"]}],"countries":["IL"],"is_corresponding":true,"raw_author_name":"Leo Dorrendorf","raw_affiliation_strings":["The Hebrew University of Jerusalem","the Hebrew University of Jerusalem"],"affiliations":[{"raw_affiliation_string":"The Hebrew University of Jerusalem","institution_ids":["https://openalex.org/I197251160"]},{"raw_affiliation_string":"the Hebrew University of Jerusalem","institution_ids":["https://openalex.org/I197251160"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018903639","display_name":"Zvi Gutterman","orcid":null},"institutions":[{"id":"https://openalex.org/I197251160","display_name":"Hebrew University of Jerusalem","ror":"https://ror.org/03qxff017","country_code":"IL","type":"education","lineage":["https://openalex.org/I197251160"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Zvi Gutterman","raw_affiliation_strings":["The Hebrew University of Jerusalem","the Hebrew University of Jerusalem"],"affiliations":[{"raw_affiliation_string":"The Hebrew University of Jerusalem","institution_ids":["https://openalex.org/I197251160"]},{"raw_affiliation_string":"the Hebrew University of Jerusalem","institution_ids":["https://openalex.org/I197251160"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5089439033","display_name":"Benny Pinkas","orcid":"https://orcid.org/0000-0002-9053-3024"},"institutions":[{"id":"https://openalex.org/I91203450","display_name":"University of Haifa","ror":"https://ror.org/02f009v59","country_code":"IL","type":"education","lineage":["https://openalex.org/I91203450"]}],"countries":["IL"],"is_corresponding":false,"raw_author_name":"Benny Pinkas","raw_affiliation_strings":["University of Haifa"],"affiliations":[{"raw_affiliation_string":"University of Haifa","institution_ids":["https://openalex.org/I91203450"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5054196786"],"corresponding_institution_ids":["https://openalex.org/I197251160"],"apc_list":null,"apc_paid":null,"fwci":5.2492,"has_fulltext":false,"cited_by_count":104,"citation_normalized_percentile":{"value":0.95904031,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":100},"biblio":{"volume":"13","issue":"1","first_page":"1","last_page":"32"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9955999851226807,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8278930187225342},{"id":"https://openalex.org/keywords/pseudorandom-number-generator","display_name":"Pseudorandom number generator","score":0.7298119068145752},{"id":"https://openalex.org/keywords/generator","display_name":"Generator (circuit theory)","score":0.6471686959266663},{"id":"https://openalex.org/keywords/random-seed","display_name":"Random seed","score":0.5521784424781799},{"id":"https://openalex.org/keywords/pseudorandom-generator","display_name":"Pseudorandom generator","score":0.4787713587284088},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.40920373797416687},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3671160638332367},{"id":"https://openalex.org/keywords/physics","display_name":"Physics","score":0.07886844873428345}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8278930187225342},{"id":"https://openalex.org/C140642157","wikidata":"https://www.wikidata.org/wiki/Q1623338","display_name":"Pseudorandom number generator","level":2,"score":0.7298119068145752},{"id":"https://openalex.org/C2780992000","wikidata":"https://www.wikidata.org/wiki/Q17016113","display_name":"Generator (circuit theory)","level":3,"score":0.6471686959266663},{"id":"https://openalex.org/C26263659","wikidata":"https://www.wikidata.org/wiki/Q1886131","display_name":"Random seed","level":3,"score":0.5521784424781799},{"id":"https://openalex.org/C92913381","wikidata":"https://www.wikidata.org/wiki/Q7255474","display_name":"Pseudorandom generator","level":3,"score":0.4787713587284088},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.40920373797416687},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3671160638332367},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.07886844873428345},{"id":"https://openalex.org/C163258240","wikidata":"https://www.wikidata.org/wiki/Q25342","display_name":"Power (physics)","level":2,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1609956.1609966","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1609956.1609966","pdf_url":null,"source":{"id":"https://openalex.org/S2642811","display_name":"ACM Transactions on Information and System Security","issn_l":"1094-9224","issn":["1094-9224","1557-7406"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Information and System Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W38507261","https://openalex.org/W64136229","https://openalex.org/W161671488","https://openalex.org/W345398754","https://openalex.org/W1480385994","https://openalex.org/W1540442590","https://openalex.org/W1554502957","https://openalex.org/W1556597491","https://openalex.org/W1564219727","https://openalex.org/W1578184507","https://openalex.org/W1688363050","https://openalex.org/W1950989567","https://openalex.org/W1989129498","https://openalex.org/W2102298648","https://openalex.org/W2118755837","https://openalex.org/W2129876196","https://openalex.org/W2169455260","https://openalex.org/W2911857293","https://openalex.org/W4396754091"],"related_works":["https://openalex.org/W2015880590","https://openalex.org/W4242117757","https://openalex.org/W44435986","https://openalex.org/W4241950541","https://openalex.org/W2024824006","https://openalex.org/W2407902723","https://openalex.org/W2077300005","https://openalex.org/W2087400319","https://openalex.org/W2056002932","https://openalex.org/W1524332342"],"abstract_inverted_index":{"The":[0,17,172,196,260,287],"PseudoRandom":[1],"Number":[2],"Generator":[3],"(PRNG)":[4],"used":[5,15,68,157,304,317,327],"by":[6,69,158,215,328],"the":[7,12,20,28,46,66,70,75,80,83,91,95,97,114,117,144,150,154,159,167,170,202,205,221,224,236,239,242,256,279,285,311,362,366,368],"Windows":[8,53,139],"operating":[9,160],"system":[10,161],"is":[11,25,119,123,141,156,174,186,226,244,269,292,340,360],"most":[13],"commonly":[14],"PRNG.":[16],"pseudorandomness":[18],"of":[19,22,30,49,52,82,94,116,169,199,201,204,235,241,253,262,278,284,289,310],"output":[21,254,283],"this":[23,264],"generator":[24,73,118,155,173,206,225,243],"crucial":[26],"for":[27,255],"security":[29,81,111],"almost":[31],"any":[32,60],"application":[33],"running":[34,258],"in":[35,103,152,176,181,331,349],"Windows.":[36],"Nevertheless,":[37],"its":[38,190,333],"exact":[39],"algorithm":[40,67,84],"was":[41,57,134],"never":[42],"published.":[43],"We":[44,64,78,147],"examined":[45],"binary":[47],"code":[48],"a":[50,87,232,272,294,299,307,329],"distribution":[51],"2000.":[54],"This":[55,107,338],"investigation":[56],"done":[58],"without":[59,193],"help":[61],"from":[62],"Microsoft.":[63],"reconstructed":[65],"pseudorandom":[71],"number":[72],"(namely,":[74],"function":[76],"CryptGenRandom).":[77],"analyzed":[79,149],"and":[85,162,238,281,335,343],"found":[86,163],"nontrivial":[88],"attack:":[89,171],"Given":[90],"internal":[92],"state":[93,99,191,203,240,274,309],"generator,":[96,237,312],"previous":[98],"can":[100,302,314,353],"be":[101,303,316],"computed":[102],"2":[104],"23":[105],"steps.":[106],"attack":[108,268,297,301,339],"on":[109,220],"forward":[110],"demonstrates":[112],"that":[113,138,164,270,293],"design":[115],"flawed,":[120],"since":[121],"it":[122,165,185,359],"well":[124],"known":[125,347],"how":[126],"to":[127,143,188,305,318],"prevent":[128],"such":[129,323],"attacks.":[130],"After":[131],"our":[132,267],"analysis":[133],"published,":[135],"Microsoft":[136],"acknowledged":[137],"XP":[140],"vulnerable":[142],"same":[145],"attack.":[146],"also":[148],"way":[151],"which":[153,313,350],"amplifies":[166],"effect":[168],"run":[175],"user":[177],"mode":[178],"rather":[179,212],"than":[180,346],"kernel":[182],"mode;":[183],"therefore,":[184],"easy":[187],"access":[189],"even":[192],"administrator":[194],"privileges.":[195],"initial":[197],"values":[198,217],"part":[200],"are":[207,213,218,370],"not":[208],"set":[209],"explicitly,":[210],"but":[211],"defined":[214],"whatever":[216],"present":[219],"stack":[222],"when":[223],"called.":[227],"Furthermore,":[228],"each":[229],"process":[230,257,330],"runs":[231],"different":[233],"copy":[234],"refreshed":[245],"with":[246,266],"system-generated":[247],"entropy":[248],"only":[249,354],"after":[250],"generating":[251],"128KB":[252,277],"it.":[259],"result":[261],"combining":[263],"observation":[265],"learning":[271],"single":[273,308],"may":[275],"reveal":[276],"past":[280,334],"future":[282,336],"generator.":[286],"implication":[288],"these":[290],"findings":[291],"buffer":[295],"overflow":[296],"or":[298],"similar":[300],"learn":[306,355],"then":[315],"predict":[319],"all":[320,332],"random":[321],"values,":[322],"as":[324],"SSL":[325,356],"keys,":[326],"operations.":[337],"more":[341,344],"severe":[342],"efficient":[345],"attacks":[348],"an":[351],"attacker":[352],"keys":[357,369],"if":[358],"controlling":[361],"attacked":[363],"machine":[364],"at":[365],"time":[367],"used.":[371]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":7},{"year":2018,"cited_by_count":11},{"year":2017,"cited_by_count":8},{"year":2016,"cited_by_count":5},{"year":2015,"cited_by_count":8},{"year":2014,"cited_by_count":11},{"year":2013,"cited_by_count":8},{"year":2012,"cited_by_count":9}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}