PUF-IPA: A PUF-based Identity Preserving Protocol for Internet of Things Authentication

Qureshi, Mahmood Azhar; Munir, Arslan

doi:10.1109/ccnc46108.2020.9045264

Cited by 37 publications

(14 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The server includes a random number (nonce) and employs a hashing function in its request; such a number is used by the device in generating the pseudo response. Similarly, PUF-IPA [51] applies a cryptographic hash of the PUF response and stores only hashed (and encrypted) values in the database that is securely accessible by the verifier. Although the SRAM-PUF based authentication scheme of [52] uses the SRAM address instead of the challenge, it still applies a cryptographic hash and uses a nonce.…”

Section: Related Workmentioning

confidence: 99%

“…Computational Overhead [51] Applying cryptographic hash function to the PUF response High computational and hardware overhead [52] Applying cryptographic hash function to the response of SRAM PUF SRAM PUF has a limited range of CRPs; Computational overhead; susceptibility to the man-in-the-middle attack due to using repetitive nonce [53] Authentication by XORing the PUF response with the previous responses when a predefined chain of challenges is used…”

Section: Refmentioning

confidence: 99%

See 1 more Smart Citation

A PUF-Based Modeling-Attack Resilient Authentication Protocol for IoT Devices

Ebrahimabadi

Younis

Karimi

2022

IEEE Internet Things J.

View full text Add to dashboard Cite

Physical Unclonable Functions (PUFs) offer a promising solution for authentication of IoT devices as they provide unique fingerprints for the underlying devices through their challenge-response pairs. However, PUFs have been shown to be vulnerable to modeling attacks. In this paper, we propose a novel protocol to thwart such vulnerability by limiting the adversary's ability to intercept the whole challenge bits exchanged with IoT nodes. We split the challenge bits over multiple messages and engage one or multiple helper nodes in the dissemination process. We further study the implications of various parts of the challenge patterns on the modeling attack and propose extensions of our protocol that exploit bits scrambling and padding to ameliorate the attack resiliency. The experimental results extracted from a 16-bit and a 64-bit arbiter-PUF implemented on FPGA demonstrate the effectiveness of the proposed methods in boosting the robustness of IoT authentication.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Refmentioning

confidence: 99%

A PUF-Based Modeling-Attack Resilient Authentication Protocol for IoT Devices

Ebrahimabadi

Younis

Karimi

2022

IEEE Internet Things J.

View full text Add to dashboard Cite

show abstract

“…However, the protocol was shown to be vulnerable to spoofing and message forging attacks. Qureshi et al, [13] proposed a PUF-based identity-preserving authentication protocol for T2M authentication scheme. The protocol uses shuffling techniques to store obscured and uncorrelated information about the registered devices' PUFs instead of storing plaintext CRPs (Challenge-Response Pairs).…”

Section: Pufs (Physical Unclonable Functions)mentioning

confidence: 99%

T2T-MAP: A PUF-Based Thing-to-Thing Mutual Authentication Protocol for IoT

Lounis¹,

Zulkernine

2021

IEEE Access

View full text Add to dashboard Cite

As security has always been an afterthought of innovation, the security of IoT (Internet of Things), in general, and authentication, in particular, has become a serious research challenge. Although many authentication protocols have been proposed in the literature during the past decade, most of them do not fulfill the IoT security and performance requirements. Furthermore, only a very small number of these protocols can be used in Thing-to-Thing (T2T) architectures, where Things autonomously authenticate each other without involving any human intervention. In this paper, we propose a novel lightweight T2T mutual authentication protocol (T2T-MAP) using PUFs (Physical Unclonable Functions). The protocol employs PUFs technology to allow each Thing to uniquely identify and authenticate itself in an IoT infrastructure by using the physical randomness of its circuitry. We design the protocol and perform a security analysis to show that it is secure against known attacks. Also, we prove the security of the protocol using a security protocol prover. Finally, we implement a prototype of the protocol on resource-constrained devices and then conduct a performance analysis to demonstrate that the protocol allows fast authentication, reasonable communication overhead, and low energy consumption.

show abstract

“…IoT node's authentication target Aysu et al [8] Yu et al [9] Gao et al [10] Che et al [11] Mahalat et al [12] Gope and Sikdar [13] Liang et al [14] Zhu et al [15] Akhundov et al [16] Byun [17] Qureshi and Munir [18] Server…”

Section: Enrollment Centermentioning

confidence: 99%

PUF Based Authenticated Key Exchange Protocol for IoT Without Verifiers and Explicit CRPs

Chuang

Lei

2021

IEEE Access

View full text Add to dashboard Cite

A Physical Unclonable Function (PUF) provides a physical device a unique output for a given input, which can be regarded as the device's digital fingerprint. Thus, PUFs can provide unique identities for billions of connected devices in Internet of Things (IoT) architectures. Plenty of PUF based authenticated key exchange (AKE) protocols have been proposed. However, most of them are designed for the authentication between an IoT node and the specific server/verifier, whom the IoT node registered with. Only a few of them are designed for the authentication between IoT nodes, and all these protocols need verifiers or explicit Challenge-Response Pairs (CRPs). In this paper, we propose the first PUF based AKE protocol for IoT without verifiers and explicit CRPs, which IoT nodes can freely authenticate each other and create a session key on their own without the help of any server or verifier. We compare the proposed protocol with 27 relevant PUF based AKE protocols to show the superiority, and analyze the computational cost of each entity in the proposed protocol to show the efficiency. We define the adversarial model of a PUF based AKE protocol for IoT and formally prove the security of the proposed protocol in random oracle model. The security of the proposed protocol is based on the Elliptic Curve Discrete Logarithm (ECDL), Elliptic Curve Computational Diffie-Hellman (ECCDH), and Decisional Bilinear Diffie-Hellman (DBDH) assumptions.INDEX TERMS Device authentication, internet of things, key agreement, key management, physical unclonable function.

show abstract

PUF-IPA: A PUF-based Identity Preserving Protocol for Internet of Things Authentication

Cited by 37 publications

References 10 publications

A PUF-Based Modeling-Attack Resilient Authentication Protocol for IoT Devices

A PUF-Based Modeling-Attack Resilient Authentication Protocol for IoT Devices

T2T-MAP: A PUF-Based Thing-to-Thing Mutual Authentication Protocol for IoT

PUF Based Authenticated Key Exchange Protocol for IoT Without Verifiers and Explicit CRPs

Contact Info

Product

Resources

About