Issue No. 01 - March (2014 vol. 2)
Masoud Rostami , Department of Electrical and Computer Engineering, Rice University, Houston, TX, USA
Mehrdad Majzoobi , Department of Electrical and Computer Engineering, Rice University, Houston, TX, USA
Farinaz Koushanfar , Department of Electrical and Computer Engineering, Rice University, Houston, TX, USA
Dan S. Wallach , Department of Computer Science, Rice University, Houston, TX, USA
Srinivas Devadas , Department of Electrical and Computer Engineering, Massachusetts Institute of Technology, Cambridge, MA, USA
This paper proposes novel robust and low-overhead physical unclonable function (PUF) authentication and key exchange protocols that are resilient against reverse-engineering attacks. The protocols are executed between a party with access to a physical PUF (prover) and a trusted party who has access to the PUF compact model (verifier). The proposed protocols do not follow the classic paradigm of exposing the full PUF responses or a transformation of them. Instead, random subsets of the PUF response strings are sent to the verifier so the exact position of the subset is obfuscated for the third-party channel observers. Authentication of the responses at the verifier side is done by matching the substring to the available full response string; the index of the matching point is the actual obfuscated secret (or key) and not the response substring itself. We perform a thorough analysis of resiliency of the protocols against various adversarial acts, including machine learning and statistical attacks. The attack analysis guides us in tuning the parameters of the protocol for an efficient and secure implementation. The low overhead and practicality of the protocols are evaluated and confirmed by hardware implementation.
Protocols, Authentication, Error correction, Licenses, Reverse engineering, Network security
M. Rostami, M. Majzoobi, F. Koushanfar, D. S. Wallach and S. Devadas, "Robust and Reverse-Engineering Resilient PUF Authentication and Key-Exchange by Substring Matching," in IEEE Transactions on Emerging Topics in Computing, vol. 2, no. 1, pp. 37-49, 2014.