Secure and Private, yet Lightweight, Authentication for the IoT via PUF and CBKA

Huth, Christopher; Aysu, Aydın; Guajardo, Jorge; Duplys, Paul; Güneysu, Tim

doi:10.1007/978-3-319-53177-9_2

Cited by 7 publications

(25 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While most PUF based protocols were initially planned for an ideal environment with limited applicability in real situations, some researchers proposed authentication protocols for real and noisy environments [30,31,32,33]. For example, Ray et al [34] released a PUF based protocol for object tracking in IoT application in real environments.…”

Section: Rfid Authentication Protocols Using Pufmentioning

confidence: 99%

“…For example, Ray et al [34] released a PUF based protocol for object tracking in IoT application in real environments. In addition, Huth et al proposed a protocol that can resist against noisy environment [33]. Nevertheless, their protocol needs an extra channel for transferring data and they use an exhaustive search in the database to retrieve the tag’s information.…”

Section: Rfid Authentication Protocols Using Pufmentioning

confidence: 99%

See 1 more Smart Citation

IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function”

Bendavid

Bagheri

Safkhani

et al. 2018

Sensors

View full text Add to dashboard Cite

With the exponential increase of Internet of things (IoT) connected devices, important security risks are raised as any device could be used as an attack channel. This preoccupation is particularly important with devices featuring limited processing power and memory capabilities for security purposes. In line with this idea, Xu et al. (2018) proposed a lightweight Radio Frequency Identification (RFID) mutual authentication protocol based on Physical Unclonable Function (PUF)—ensuring mutual tag-reader verification and preventing clone attacks. While Xu et al. claim that their security protocol is efficient to protect RFID systems, we found it still vulnerable to a desynchronization attack and to a secret disclosure attack. Hence, guidelines for the improvements to the protocol are also suggested, for instance by changing the structure of the messages to avoid trivial attacks. In addition, we provide an explicit protocol for which our formal and informal security analysis have found no weaknesses.

show abstract

Section: Rfid Authentication Protocols Using Pufmentioning

confidence: 99%

Section: Rfid Authentication Protocols Using Pufmentioning

confidence: 99%

IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function”

Bendavid

Bagheri

Safkhani

et al. 2018

Sensors

View full text Add to dashboard Cite

show abstract

“…Besides, their protocol can support forward secrecy. However, Huth et al [42] revealed that this protocol can leak sensitive data potentially and is vulnerable to tracing attacks. They made up this flaw in their enhanced protocol but an additional channel-based key agreement phase is needed.…”

Section: Related Workmentioning

confidence: 99%

“…Not only Bendavid et al [46] but most of the existing schemes also keep secret parameters in tag memory. For instance, all the schemes mentioned above do so except Aysu et al [41] and Huth et al [42]. Similar to them, Gope et al [47] stores no secret parameters in tag memory but only a temporary identity and a set of unique unlinkable pseudo-identities, which are also shared by the backend server to prevent desynchronization attacks.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Lightweight RFID Mutual Authentication Protocol with PUF

Zhu

et al. 2019

Sensors

View full text Add to dashboard Cite

Radio frequency identification is one of the key techniques for Internet of Things, which has been widely adopted in many applications for identification. However, there exist various security and privacy issues in radio frequency identification (RFID) systems. Particularly, one of the most serious threats is to clone tags for the goal of counterfeiting goods, which causes great loss and danger to customers. To solve these issues, lots of authentication protocols are proposed based on physical unclonable functions that can ensure an anti-counterfeiting feature. However, most of the existing schemes require secret parameters to be stored in tags, which are vulnerable to physical attacks that can further lead to the breach of forward secrecy. Furthermore, as far as we know, none of the existing schemes are able to solve the security and privacy problems with good scalability. Since many existing schemes rely on exhaustive searches of the backend server to validate a tag and they are not scalable for applications with a large scale database. Hence, in this paper, we propose a lightweight RFID mutual authentication protocol with physically unclonable functions (PUFs). The performance analysis shows that our proposed scheme can ensure security and privacy efficiently in a scalable way.

show abstract

Spatial Reconfigurable Physical Unclonable Functions for the Internet of Things

Babaei

Schiele

2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Secure and Private, yet Lightweight, Authentication for the IoT via PUF and CBKA

Cited by 7 publications

References 32 publications

IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function”

IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function”

A Lightweight RFID Mutual Authentication Protocol with PUF

Spatial Reconfigurable Physical Unclonable Functions for the Internet of Things

Contact Info

Product

Resources

About