Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 UCR Hardware Security Primitives with focus on PUFs Slide credit: Srini Devedas and others.

Published byBertha Ball Modified over 8 years ago

Similar presentations

Presentation on theme: "1 UCR Hardware Security Primitives with focus on PUFs Slide credit: Srini Devedas and others."— Presentation transcript:

1 1 UCR Hardware Security Primitives with focus on PUFs Slide credit: Srini Devedas and others

2 2 UCR Hardware security primitives Our next topic looks at hardware primitives that can assist with security Examples  True random number generators (Intel’s RdRand)  AES/SHA instructions (hardware crypto support)  PUFs (today)  ORAM (today?)  The wire-tap problem for generating keys  Higher level mechanisms (starting next class) What does hardware offer; lets consider some of the above.

3 3 UCR PUF Introduction  Physical Unclonable Function (PUF)  Rely on process variations  Variation is inherent in fabrication process  Unique for each physical instance—”hardware fingerprint”  Cannot model, cannot clone (or can you?)  Relative variation increases as the fab process advances-- good  Non-silicon PUFs can help with tamper resistance

4 4 UCR Definition A Physical Random Function or Physical Unclonable Function (PUF) is a function that is:  Based on a physical system  Easy to evaluate (using the physical system)  Its output looks like a random function  Unpredictable even for an attacker with physical access  Reliable: returns the same (or similar) value for the same input challenge

5 5 UCR Advantages and Applications of PUFs Advantages:  No secure memory required  Not vulnerable to physical attacks  Can be very small – embedded devices  Intrinsic defense against intrusive hardware Some applications  Device identification and authentication  Secure key generation  software licensing to a specific machine  Building block for crypto algorithms (RNG, Key generation, …)

6 6 UCR Scenario: Storing digital information in a device in a way that is resistant to physical attack is difficult and expensive. IBM 4758 Tamper-proof package containing a secure processor which has a secret key and memory Tens of sensors, resistance, temperature, voltage, etc. Continually battery-powered ~ $3000 for a 99 MHz processor and 128MB of memory

7 7 UCR Silicon PUF – Proof of Concept Because of process variations, no two Integrated Circuits are identical Identical circuits with identical layouts on different FPGAs: path delays vary enough across ICs to use them for identification. Combinatorial Circuit Challenge Response

8 8 UCR PUF Circuits ● Arbiter PUF

9 9 UCR 100 bits of response Distance between Chip X and Y responses = 24 bits Experiments Fabricated candidate PUF on multiple IC ’ s, 0.18  TSMC Apply 100 random challenges and observe response At 70C measurement noise for chip X = 2 Can identify individual ICs Measurement noise for Chip X = 0.5

10 10 UCR PUF Circuits  construct a k-bit response  one circuit can be used k times with different inputs  duplicate the single-output PUF circuit

11 11 UCR PUF Circuits ● Ring Oscillator PUF

12 12 UCR Ring Oscillator Circuits  Easier Implementation  No need for careful layout and routing  Slower, Larger, more power to generate bits  Better for FPGAs and secure processors  Hard to generate many challenge response pairs

13 13 UCR PUF Circuits ● Ring Oscillator PUF  environmental conditions  Choose ring oscillator pairs, whose frequencies are far apart=>remove key generation error

14 14 UCR PUF Circuits ● Lightweight Secure PUF. Avalance property Hardware Security and Trust, CE, SUT

15 15 UCR PUF Circuits SRAM ● SRAM PUF

16 16 UCR PUF Circuits ● Butterfly PUF

17 17 UCR Applications of PUF 1) Low cost authentication

18 18 UCR Applications of PUF 2) Cryptographic Key Generator *ECC=Error Correction Code

19 19 UCR Applications of PUF 3) Software Licensing and Anonymous Computation *CPUF=Controlled PUF

20 20 UCR Applications of PUF 3) Software Licensing and Anonymous Computation

21 21 UCR 0.1% of all challenges do not return a consistent response These meta-stable challenges generate responses which can vary unpredictably Applications of PUF 4) Entropy source for RNG

22 22 UCR However… Security of PUFs is unclear – our required reading Many PUFs (especially timing based) shown to be in fact clonable (CCS 2010 paper)  General idea: machine learning based on some challenges allows us to predict other challenges (>99% success)  Sometimes the effort is big (10s of days) Gap between PUF implementations and models in literature  Security parameters cannot be determined in practice

Download ppt "1 UCR Hardware Security Primitives with focus on PUFs Slide credit: Srini Devedas and others."

Similar presentations

ACHIEVING NETWORK LEVEL PRIVACY IN WIRELESS SENSOR NETWORKS.

ACHIEVING NETWORK LEVEL PRIVACY IN WIRELESS SENSOR NETWORKS.
Trusted Design In FPGAs

Trusted Design In FPGAs
Spreading Alerts Quietly and the Subgroup Escape Problem Aleksandr Yampolskiy (Yale) Joint work with James Aspnes, Zoë Diamadi, Kristian Gjøsteen, and.

Spreading Alerts Quietly and the Subgroup Escape Problem Aleksandr Yampolskiy (Yale) Joint work with James Aspnes, Zoë Diamadi, Kristian Gjøsteen, and.
Foundations of Cryptography Lecture 10 Lecturer: Moni Naor.

Foundations of Cryptography Lecture 10 Lecturer: Moni Naor.
TIE Extensions for Cryptographic Acceleration Charles-Henri Gros Alan Keefer Ankur Singla.

TIE Extensions for Cryptographic Acceleration Charles-Henri Gros Alan Keefer Ankur Singla.
1 SECURE-PARTIAL RECONFIGURATION OF FPGAs MSc.Fisnik KRAJA Computer Engineering Department, Faculty Of Information Technology, Polytechnic University of.

1 SECURE-PARTIAL RECONFIGURATION OF FPGAs MSc.Fisnik KRAJA Computer Engineering Department, Faculty Of Information Technology, Polytechnic University of.
International Symposium on Low Power Electronics and Design Low-Power Sub-Threshold Design of Secure Physical Unclonable Functions 1 Lang Lin, 2 Dan Holcomb,

International Symposium on Low Power Electronics and Design Low-Power Sub-Threshold Design of Secure Physical Unclonable Functions 1 Lang Lin, 2 Dan Holcomb,
Lecture10 – More on Physically Unclonable Functions (PUFs)

Lecture10 – More on Physically Unclonable Functions (PUFs)
Physical Unclonable Functions and Applications

Physical Unclonable Functions and Applications
1 U NIVERSITY OF M ICHIGAN Reliable and Efficient PUF- Based Key Generation Using Pattern Matching Srini Devadas and Zdenek Paral (MIT), HOST 2011 Thomas.

1 U NIVERSITY OF M ICHIGAN Reliable and Efficient PUF- Based Key Generation Using Pattern Matching Srini Devadas and Zdenek Paral (MIT), HOST 2011 Thomas.
Physical Unclonable Functions

Physical Unclonable Functions
1 Design and Implementation of the AEGIS Single-Chip Secure Processor Using Physical Random Functions G. Edward Suh, Charles W. O’Donnell, Ishan Sachdev,

1 Design and Implementation of the AEGIS Single-Chip Secure Processor Using Physical Random Functions G. Edward Suh, Charles W. O’Donnell, Ishan Sachdev,
Slender PUF Protocol Authentication by Substring Matching M. Majzoobi, M. Rostami, F. Koushanfar, D. Wallach, and S. Devadas* International Workshop on.

Slender PUF Protocol Authentication by Substring Matching M. Majzoobi, M. Rostami, F. Koushanfar, D. Wallach, and S. Devadas* International Workshop on.
Daniel E. Holcomb, Wayne P. Burleson and Kevin Fu

Daniel E. Holcomb, Wayne P. Burleson and Kevin Fu
Nurbek Saparkhojayev and Dale R. Thompson, Ph.D., P.E. Computer Science and Computer Engineering Dept. University of Arkansas Matching Electronic Fingerprints.

Nurbek Saparkhojayev and Dale R. Thompson, Ph.D., P.E. Computer Science and Computer Engineering Dept. University of Arkansas Matching Electronic Fingerprints.
Fuzzy extractor based on universal hashes

Fuzzy extractor based on universal hashes
Strong Error Detection for Control Units Against Advanced Attackers Kahraman Daglar Akdemir Advisor: Berk Sunar Electrical and Computer Engineering MOTIVATION.

Strong Error Detection for Control Units Against Advanced Attackers Kahraman Daglar Akdemir Advisor: Berk Sunar Electrical and Computer Engineering MOTIVATION.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.
16/13/2015 3:30 AM6/13/2015 3:30 AM6/13/2015 3:30 AMIntroduction to Software Development What is a computer? A computer system contains: Central Processing.

16/13/2015 3:30 AM6/13/2015 3:30 AM6/13/2015 3:30 AMIntroduction to Software Development What is a computer? A computer system contains: Central Processing.

Similar presentations

Ads by Google