A Modeling Attack Resistant Deception Technique for Securing PUF based Authentication

Chongyan Gu, Chip Hong Chang, Weiqiang Liu, Shichao Yu, Qingqing Ma, Maire O'Neill

Research output: Chapter in Book/Report/Conference proceedingConference contribution

20 Citations (Scopus)
355 Downloads (Pure)

Abstract

Due to practical constraints in preventing phishing through public network or insecure communication channels, simple physical unclonable function (PUF)-based authentication protocol with unrestricted queries and transparent responses is vulnerable to modeling and replay attacks. In this paper, we present a PUF-based authentication method to mitigate the practical limitations in applications where a resource-rich server authenticates a device with no strong restriction imposed on the type of PUF designs or any additional protection on the binary channel used for the authentication. Our scheme uses an active deception protocol to prevent machine learning (ML) attacks on a device. The monolithic system makes collection of challenge response pairs (CRPs) easy for model building during enrollment but prohibitively time consuming upon device deployment. A genuine server can perform a mutual authentication with the device at any time with a combined fresh challenge contributed by both the server and the device. The message exchanged in clear does not expose the authentic CRPs. The false PUF multiplexing is fortified against prediction of waiting time by doubling the time penalty for every unsuccessful authentication.
Original languageEnglish
Title of host publicationAsian Hardware Oriented Security and Trust Symposium (AsianHOST)
PublisherInstitute of Electrical and Electronics Engineers Inc.
Number of pages6
ISBN (Electronic)978-1-7281-3544-1
DOIs
Publication statusPublished - 24 Feb 2020

Fingerprint

Dive into the research topics of 'A Modeling Attack Resistant Deception Technique for Securing PUF based Authentication'. Together they form a unique fingerprint.

Cite this