A Lockdown Technique to Prevent Machine Learning on PUFs for Lightweight Authentication

Yu, Meng-Day; Hiller, Matthias; Delvaux, Jeroen; Sowell, Richard; Devadas, Srinivas; Verbauwhede, Ingrid

doi:10.1109/tmscs.2016.2553027

Cited by 175 publications

(154 citation statements)

References 35 publications

(118 reference statements)

Supporting

Mentioning

154

Contrasting

Order By: Relevance

“…The main problems were vulnerability for DoS attacks, replay attacks, impersonation attacks, and synchronization problems. In the lightweight category of proposals are the Slender PUF, [14] noise bifurcation [15] and PUF lockdown protocol [16] retained, while in the non-lightweight category only Reference protocol II-A [13] and the protocol proposed by Sadegi et al [17]. The main difference between these protocols [13][14][15][16][17] and our PUF based protocol is that these protocols take noisiness of the PUF into account, while our protocol considers the usage of a strong and controlled PUF.…”

Section: Key Agreement From Iot Device To Servermentioning

confidence: 99%

“…[14,15] also take countermeasures to offer resistance against machine learning attacks, although they cannot be completely excluded [13]. The proposed protocol in [16] prevents an attacker from querying a token for CRPs that have not yet been disclosed during a prior protocol run. The main weakness of [17] is that it does not scale well, as the server needs to exhaustively evaluate a pseudo random function for each registered token.…”

Section: Key Agreement From Iot Device To Servermentioning

confidence: 99%

See 1 more Smart Citation

PUF Based Authentication Protocol for IoT

Braeken

2018

Symmetry

136

View full text Add to dashboard Cite

Key agreement between two constrained Internet of Things (IoT) devices that have not met each other is an essential feature to provide in order to establish trust among its users. Physical Unclonable Functions (PUFs) on a device represent a low cost primitive exploiting the unique random patterns in the device and have been already applied in a multitude of applications for secure key generation and key agreement in order to avoid an attacker to take over the identity of a tampered device, whose key material has been extracted. This paper shows that the key agreement scheme of a recently proposed PUF based protocol, presented by Chatterjee et al., for Internet of Things (IoT) is vulnerable for man-in-the-middle, impersonation, and replay attacks in the Yao-Dolev security model. We propose an alternative scheme, which is able to solve these issues and can provide in addition a more efficient key agreement and subsequently a communication phase between two IoT devices connected to the same authentication server. The scheme also offers identity based authentication and repudiation, when only using elliptic curve multiplications and additions, instead of the compute intensive pairing operations.

show abstract

Section: Key Agreement From Iot Device To Servermentioning

confidence: 99%

Section: Key Agreement From Iot Device To Servermentioning

confidence: 99%

PUF Based Authentication Protocol for IoT

Braeken

2018

Symmetry

136

View full text Add to dashboard Cite

show abstract

“…In an authentication scenario, the availability of the adaptive chosen challenges and repeated measurements can be limited by a proposed server managed CRP lockdown protocol [95]. While the lockdown protocol is primarily designed to prevent repeated measurements in the case of ML attacks with noise-side channel information [10], it is effective against the photonic SCA as well.…”

Section: Countermeasuresmentioning

confidence: 99%

On the Physical Security of Physically Unclonable Functions

Tajik

2019

T-Labs Series in Telecommunication Services

View full text Add to dashboard Cite

“…Mukhopadhyay [14] temporarily fused the access point to CRPs to increase the complexity to build ML model but the PUFs are still not directly secured against ML-MA. Another defense mechanism related to access control is developed by Yu et al [71]. The authentication using PUFs was performed by employing lockdown which requires server's permission to obtain new CRPs.…”

Section: Comparison Analysis Of Defense Mechanisms Against Attacksmentioning

confidence: 99%

Defense Mechanisms against Machine Learning Modeling Attacks on Strong Physical Unclonable Functions for IOT Authentication: A Review

Noor¹,

Daud²,

Ahmad³

et al. 2017

ijacsa

View full text Add to dashboard Cite

Abstract-Security component in IoT system are very crucial because the devices within the IoT system are exposed to numerous malicious attacks. Typical security components in IoT system performs authentication, authorization, message and content integrity check. Regarding authentication, it is normally performed using classical authentication scheme using crypto module. However, the utilization of the crypto module in IoT authentication is not feasible because of the distributed nature of the IoT system which complicates the message cipher and decipher process. Thus, the Physical Unclonable Function (PUF) is suggested to replace crypto module for IoT authentication because it only utilizes responses from set of challenges instead of cryptographic keys to authenticate devices. PUF can generate large number of challenge-response pairs (CRPs) which is good for authentication because the unpredictability is high. However, with the emergence of machine learning modeling, the CRPs now can be predicted through machine learning algorithms. Various defense mechanisms were proposed to counter machine learning modeling attacks (ML-MA). Although they were experimentally proven to be able to increase resiliency against ML-MA, they caused the generated responses to be instable and incurred high area overhead. Thus, there is a need to design the best defense mechanism which is not only resistant to ML-MA but also produces reliable responses and reduces area overhead. This paper presents an analysis on defense mechanisms against ML-MA on strong PUFs for IoT authentication.

show abstract

A Lockdown Technique to Prevent Machine Learning on PUFs for Lightweight Authentication

Cited by 175 publications

References 35 publications

PUF Based Authentication Protocol for IoT

PUF Based Authentication Protocol for IoT

On the Physical Security of Physically Unclonable Functions

Defense Mechanisms against Machine Learning Modeling Attacks on Strong Physical Unclonable Functions for IOT Authentication: A Review

Contact Info

Product

Resources

About