PUF based IoT Device Authentication Scheme

Kim, Byoungkoo; Yoon, Seoungyong; Kang, Young-Shik; Choi, Dooho

doi:10.1109/ictc46691.2019.8939751

Cited by 19 publications

(10 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, it might consist of a generation of 2 N CRP for a strong arbiter PUF of N bits (i.e., for a challenge of 16 bits, there are more than 60,000 CRPs) [57]. The direct usage of CRP generated by PUF requires that the server stores a large amount of CRP pairs, escalating proportionally to the number of devices [58]. Considering that the user already has an invasive authenticator registered with their bank (e.g., smartphone), the enrollment of the trusted IoT device can be classified as a binding of an additional authenticator at existing authentication assurance level.…”

Section: Enrollmentmentioning

confidence: 99%

Hands-Free Authentication for Virtual Assistants with Trusted IoT Device and Machine Learning

Hayashi

Ruggiero

2022

Sensors

View full text Add to dashboard Cite

Virtual assistants, deployed on smartphone and smart speaker devices, enable hands-free financial transactions by voice commands. Even though these voice transactions are frictionless for end users, they are susceptible to typical attacks to authentication protocols (e.g., replay). Using traditional knowledge-based or possession-based authentication with additional invasive interactions raises users concerns regarding security and usefulness. State-of-the-art schemes for trusted devices with physical unclonable functions (PUF) have complex enrollment processes. We propose a scheme based on a challenge response protocol with a trusted Internet of Things (IoT) autonomous device for hands-free scenarios (i.e., with no additional user interaction), integrated with smart home behavior for continuous authentication. The protocol was validated with automatic formal security analysis. A proof of concept with websockets presented an average response time of 383 ms for mutual authentication using a 6-message protocol with a simple enrollment process. We performed hands-free activity recognition of a specific user, based on smart home testbed data from a 2-month period, obtaining an accuracy of 97% and a recall of 81%. Given the data minimization privacy principle, we could reduce the total number of smart home events time series from 7 to 5. When compared with existing invasive solutions, our non-invasive mechanism contributes to the efforts to enhance the usability of financial institutions’ virtual assistants, while maintaining security and privacy.

show abstract

Section: Enrollmentmentioning

confidence: 99%

Hands-Free Authentication for Virtual Assistants with Trusted IoT Device and Machine Learning

Hayashi

Ruggiero

2022

Sensors

View full text Add to dashboard Cite

show abstract

“…3.1.7 Single CRP-based Authentication Protocol for IoT. Kim et al, [16] proposed a PUF-based authentication protocol to allow a smart device to be authenticated by a server. The protocol tries to reduce the load issue of storing all the CRPs of all registered devices on a particular server (i.e., trust center) by storing only one CRP, (c d i , r d i ), per device d i , at a time.…”

Section: Lessonsmentioning

confidence: 99%

Lessons Learned: Analysis of PUF-based Authentication Protocols for IoT

Lounis

Zulkernine

2022

Digital Threats

View full text Add to dashboard Cite

The service of authentication constitutes the spine of all security properties. It is the phase where entities prove their identities to each other and generally establish and derive cryptographic keys to provide confidentiality, data integrity, non-repudiation, and availability. Due to the heterogeneity and the particular security requirements of IoT (Internet of Things), developing secure, low-cost, and lightweight authentication protocols has become a serious challenge. This has excited the research community to design and develop new authentication protocols that meet IoT requirements. A recent technology, called PUFs (Physical Unclonable Functions), has been the subject of many subsequent publications on lightweight, low-cost, and secure-by-design authentication protocols. This has turned our attention to investigate the most recent PUF-based authentication protocols for IoT. In this paper, we review the security of these protocols. We first provide the necessary background on PUFs, their types, and related attacks. Also, we discuss how PUFs are used for authentication. Then, we analyze the security of PUF-based authentication protocols to identify and report common security issues and design flaws, as well as to provide recommendations for future authentication protocol designers.

show abstract

“…So it consumes considerable computing resources. To reduce the risk of authentication key exposure and the authentication server's burden, Byoungkoo Kim et al [30] proposed a PUF-based authentication scheme for IoT devices. Through interaction with the device, only a single CRP is stored and updated.…”

Section: Related Workmentioning

confidence: 99%

A CPK-Based Identity Authentication Scheme for IoT

Zhang¹,

Mao²,

Ma³

et al. 2022

Computer Systems Science and Engineering

View full text Add to dashboard Cite

As the power Internet of Things (IoT) enters the security construction stage, the massive use of perception layer devices urgently requires an identity authentication scheme that considers both security and practicality. The existing public key infrastructure (PKI)-based security authentication scheme is currently difficult to apply in many terminals in IoT. Its key distribution and management costs are high, which hinders the development of power IoT security construction. Combined Public Key (CPK) technology uses a small number of seeds to generate unlimited public keys. It is very suitable for identity authentication in the power Internet of Things. In this paper, we propose a novel identity authentication scheme for power IoT. The scheme combines the physical unclonable function (PUF) with improved CPK technology to achieve mutual identity authentication between power IoT terminals and servers. The proposed scheme does not require third-party authentication and improves the security of identity authentication for power IoT. Moreover, the scheme reduces the resource consumption of power IoT devices. The improved CPK algorithm solves the key collision problem, and the third party only needs to save the private key and the public key matrix. Experimental results show that the amount of storage resources occupied in our scheme is small. The proposed scheme is more suitable for the power IoT.

show abstract

PUF based IoT Device Authentication Scheme

Cited by 19 publications

References 3 publications

Hands-Free Authentication for Virtual Assistants with Trusted IoT Device and Machine Learning

Hands-Free Authentication for Virtual Assistants with Trusted IoT Device and Machine Learning

Lessons Learned: Analysis of PUF-based Authentication Protocols for IoT

A CPK-Based Identity Authentication Scheme for IoT

Contact Info

Product

Resources

About