Computer Security Applications Conference, Annual (2002)
San Diego California
Dec. 9, 2002 to Dec. 13, 2002
Blaise Gassend , Massachusetts Institute of Technology
Dwaine Clarke , Massachusetts Institute of Technology
Marten van Dijk , Massachusetts Institute of Technology
Srinivas Devadas , Massachusetts Institute of Technology
A Physical Random Function (PUF) is a random function that can only be evaluated with the help of a complex physical system. We introduce Controlled Physical Random Functions (CPUFs) which are PUFs that can only be accessed via an algorithm that is physically bound to the PUF in an inseparable way.<div></div> CPUFs can be used to establish a shared secret between a physical device and a remote user. We present protocols that make this possible in a secure and flexible way, even in the case of multiple mutually mistrusting parties.<div></div> Once established, the shared secret can be used to enable a wide range of applications. We describe certified execution, where a certificate is produced that proves that a specific computation was carried out on a specific processor. Certified execution has many benefits, including protection against malicious nodes in distributed computation networks. We also briefly discuss a software licensing application.
M. van Dijk, B. Gassend, S. Devadas and D. Clarke, "Controlled Physical Random Functions," Computer Security Applications Conference, Annual(ACSAC), San Diego California, 2002, pp. 149.