TY - GEN
T1 - PUF-IPA
T2 - 17th IEEE Annual Consumer Communications and Networking Conference, CCNC 2020
AU - Qureshi, Mahmood Azhar
AU - Munir, Arslan
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/1
Y1 - 2020/1
N2 - Physically unclonable functions (PUFs) can be used for Internet of things (IoT) based identification, authentication and authorization. However, PUF based authentication systems are vulnerable to various attacks including, but not limited to, replay and modeling attacks. In this paper, we propose PUF-IPA, a PUF-based identity-preserving protocol for IoT device authentication. The PUF-IPA provides stronger resilience against security attacks as compared to previous approaches assuming a threat model where adversary can conduct not only passive or active attacks during authentication phase but can also breach the server storing PUF credentials. The proposed PUF-IPA is robust against brute force, replay, and modeling attacks. In PUF-IPA, no partial/full challenge-response pairs (CRPs) or soft models associated to a PUF within a device are stored, generated, transmitted, or received by the server during authentication events. The PUF-IPA improves the PUF response accuracy by enabling self-checking. Results reveal that the PUF-IPA improves the PUF response accuracy from 89% to 98% without the use of hardware-expensive error correction codes.
AB - Physically unclonable functions (PUFs) can be used for Internet of things (IoT) based identification, authentication and authorization. However, PUF based authentication systems are vulnerable to various attacks including, but not limited to, replay and modeling attacks. In this paper, we propose PUF-IPA, a PUF-based identity-preserving protocol for IoT device authentication. The PUF-IPA provides stronger resilience against security attacks as compared to previous approaches assuming a threat model where adversary can conduct not only passive or active attacks during authentication phase but can also breach the server storing PUF credentials. The proposed PUF-IPA is robust against brute force, replay, and modeling attacks. In PUF-IPA, no partial/full challenge-response pairs (CRPs) or soft models associated to a PUF within a device are stored, generated, transmitted, or received by the server during authentication events. The PUF-IPA improves the PUF response accuracy by enabling self-checking. Results reveal that the PUF-IPA improves the PUF response accuracy from 89% to 98% without the use of hardware-expensive error correction codes.
KW - identity-preserving
KW - Lightweight authentication
KW - PUFs
UR - http://www.scopus.com/inward/record.url?scp=85085503466&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85085503466&partnerID=8YFLogxK
U2 - 10.1109/CCNC46108.2020.9045264
DO - 10.1109/CCNC46108.2020.9045264
M3 - Conference contribution
AN - SCOPUS:85085503466
T3 - 2020 IEEE 17th Annual Consumer Communications and Networking Conference, CCNC 2020
BT - 2020 IEEE 17th Annual Consumer Communications and Networking Conference, CCNC 2020
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 10 January 2020 through 13 January 2020
ER -