Security of a PUF Mutual Authentication and Session Key Establishment Protocol for IoT Devices

Sun, Da‐Zhi; Tian, Yangguang

doi:10.3390/math10224310

Cited by 5 publications

(1 citation statement)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Zerrouki et al [ 21 ] proposed a mutual authentication and session key establishment protocol for IoT devices based on PUFs. Sun and Tian [ 22 ] further gave security analysis and improvements to this protocol and suggested the idea of a key compromise to evaluate other novel PUF protocol designs. Wang et al [ 23 ] introduced a supplementary sub-protocol to the PUF-based authentication protocol for the purpose of enhancing resistance to desynchronization attacks.…”

Section: Introductionmentioning

confidence: 99%

On the Security of a PUF-Based Authentication and Key Exchange Protocol for IoT Devices

Sun

Gao

Tian

2023

Sensors

Self Cite

View full text Add to dashboard Cite

Recently, Roy et al. proposed a physically unclonable function (PUF)-based authentication and key exchange protocol for Internet of Things (IoT) devices. The PUF protocol is efficient, because it integrates both the Node-to-Node (N2N) authentication and the Node-to-Server (N2S) authentication into a standalone protocol. In this paper, we therefore examine the security of the PUF protocol under the assumption of an insider attack. Our cryptanalysis findings are the following. (1) A legitimate but malicious IoT node can monitor the secure communication among the server and any other IoT nodes in both N2N authentication and N2S authentication. (2) A legitimate but malicious IoT node is able to impersonate a target IoT node to cheat the server and any other IoT nodes in N2N authentication and the server in N2S authentication, respectively. (3) A legitimate but malicious IoT node can masquerade as the server to cheat any other target IoT nodes in both N2N authentication and N2S authentication. To the best of our knowledge, our work gives the first non-trivial concrete security analysis for the PUF protocol. In addition, we employ the automatic verification tool of security protocols, i.e., Scyther, to confirm the weaknesses found in the PUF protocol. We finally consider how to prevent weaknesses in the PUF protocol.

show abstract

Section: Introductionmentioning

confidence: 99%

On the Security of a PUF-Based Authentication and Key Exchange Protocol for IoT Devices

Sun

Gao

Tian

2023

Sensors

Self Cite

View full text Add to dashboard Cite

show abstract

A comprehensive survey on hardware-assisted malware analysis and primitive techniques

Praveen Kumar,

Priyanka

2023

Computer Networks

View full text Add to dashboard Cite

Designing secure PUF-based authentication protocols for constrained environments

Lee,

Safkhani,

et al. 2023

Sci Rep

View full text Add to dashboard Cite

Physical Unclonable Functions (PUFs) are widely used in cryptographic authentication and key-agreement protocols due to their unique physical properties. This article presents a comprehensive cryptanalysis of two recently developed authentication protocols, namely PLAKE and EV-PUF, both relying on PUFs. Our analysis reveals significant vulnerabilities in these protocols, including susceptibility to impersonation and key leakage attacks, which pose serious threats to the security of the underlying systems. In the case of PLAKE, we propose an attack that can extract the shared secret key with negligible complexity by eavesdropping on consecutive protocol sessions. Similarly, we demonstrate an efficient attack against EV-PUF that enables the determination of the shared key between specific entities. Furthermore, we highlight the potential for a single compromised client in the EV-PUF protocol to compromise the security of the entire network, leaving it vulnerable to pandemic attacks. These findings underscore the critical importance of careful design and rigorous evaluation when developing PUF-based authentication protocols. To address the identified vulnerabilities, we present an improved PUF-based authentication protocol that ensures robust security against all the attacks described in the context of PLAKE and EV-PUF. Through this research, we contribute to the field by exposing vulnerabilities in existing PUF-based authentication protocols and offering an improved protocol that enhances security and safeguards against various attack vectors. This work serves as a valuable reference for researchers and practitioners involved in the design and implementation of secure authentication schemes for IoT systems and dynamic charging systems for electric vehicles.

show abstract

Security of a PUF Mutual Authentication and Session Key Establishment Protocol for IoT Devices

Cited by 5 publications

References 41 publications

On the Security of a PUF-Based Authentication and Key Exchange Protocol for IoT Devices

On the Security of a PUF-Based Authentication and Key Exchange Protocol for IoT Devices

A comprehensive survey on hardware-assisted malware analysis and primitive techniques

Designing secure PUF-based authentication protocols for constrained environments

Contact Info

Product

Resources

About