TY - GEN
T1 - PhenoAuth: a novel PUF-phenotype-based authentication protocol for IoT devices
AU - Fei, Hongming
AU - Millwood, Owen
AU - Gope, Prosanta
AU - Miskelly, Jack
AU - Sikdar, Biplab
PY - 2024/6/6
Y1 - 2024/6/6
N2 - Physical Unclonable Functions (PUFs) have been shown to be a highly promising solution for enabling high security systems tailored for low-power devices. Commonly, PUFs are utilised to generate cryptographic keys on-the-fly, replacing the need to store keys in vulnerable, non-volatile memories. Due to the physical nature of PUFs, environmental variations cause noise, manifesting themselves as errors which are apparent in the initial PUF measurements. This necessitates expensive active error correction techniques which can run counter to the goal of lightweight security. ML-based techniques for authenticating noisy PUF measurements were explored as an alternative to error correction techniques, bringing about the concept of a PUF Phenotype, where PUF identity is considered as a structure agnostic representation of the PUF, with relevant noise encoding. This work proposes a full noise-tolerant authentication protocol based on the PUF Phenotype concept and methodology for an Internet-of-Things (IoT) network, demonstrating mutual authentication and forward secrecy in a setting suitable for device-to-device communication. Upon conducting security and performance analyses, it is evident that our proposed scheme demonstrates resilience against various attacks compared to the currently existing PUF protocols.
AB - Physical Unclonable Functions (PUFs) have been shown to be a highly promising solution for enabling high security systems tailored for low-power devices. Commonly, PUFs are utilised to generate cryptographic keys on-the-fly, replacing the need to store keys in vulnerable, non-volatile memories. Due to the physical nature of PUFs, environmental variations cause noise, manifesting themselves as errors which are apparent in the initial PUF measurements. This necessitates expensive active error correction techniques which can run counter to the goal of lightweight security. ML-based techniques for authenticating noisy PUF measurements were explored as an alternative to error correction techniques, bringing about the concept of a PUF Phenotype, where PUF identity is considered as a structure agnostic representation of the PUF, with relevant noise encoding. This work proposes a full noise-tolerant authentication protocol based on the PUF Phenotype concept and methodology for an Internet-of-Things (IoT) network, demonstrating mutual authentication and forward secrecy in a setting suitable for device-to-device communication. Upon conducting security and performance analyses, it is evident that our proposed scheme demonstrates resilience against various attacks compared to the currently existing PUF protocols.
KW - Authentication Protocol
KW - IoT
KW - Physical Unclonable Functions (PUFs)
KW - PUF-Phenotype
U2 - 10.1109/HOST55342.2024.10545387
DO - 10.1109/HOST55342.2024.10545387
M3 - Conference contribution
AN - SCOPUS:85196067111
SN - 9798350373950
T3 - IEEE International Symposium on Hardware Oriented Security and Trust (HOST): Proceedings
SP - 309
EP - 319
BT - 2024 IEEE International Symposium on Hardware Oriented Security and Trust (HOST): Proceedings
PB - IEEE
T2 - 2024 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2024
Y2 - 6 May 2024 through 9 May 2024
ER -