Tamper-sensitive pre-formed ReRAM-based PUFs: Methods and experimental validation

Wilson, Taylor; Cambou, Bertrand

doi:10.3389/fnano.2022.1055545

Cited by 2 publications

(1 citation statement)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Testing shall be done to bring this new PUF design in compliance with NIST's qualifications of randomness. An additional layer of security can be added to this PUF through advancement of our tamper sensitivity methods, highlighted in the work of Wilson et al 16 We prescribe building a real-world implementation using the work of Wright et al 24 Their work presents an RBC error-correcting engine (see Section 2.3), which instead of sending the hash of the key to the CA, would only require that the public key is sent to the CA in order for the CA to correct for error. This is an excellent enhancement since it eliminates the transfer of sensitive information over the network, even if that sensitive information is hashed.…”

Section: Future Workmentioning

confidence: 99%

Post-quantum cryptographic key distribution for autonomous systems operating in contested areas

Jain

Garrett

Cambou

2023

Autonomous Systems: Sensors, Processing and Security for Ground, Air, Sea, and Space Vehicles and Infrastructure 2023

View full text Add to dashboard Cite

The deployment of post-quantum cryptographic algorithms currently under standardization by NIST have the potential to mitigate quantum computer based attacks, which present a whole new range of cybersecurity challenges. We recognize post-quantum cryptography (PQC) key distribution, across autonomous systems operating in contested areas, as a particularly difficult problem to solve. Verifying the origin and integrity of mission instructions is of extreme importance, especially in the context of autonomous vehicles, missiles, and drones; the lack of which can enable opponents to leverage attacks effecting catastrophic damage to life, property, and strategy.This work proposes a protocol for controlled key distribution through the use of PQC algorithms, strengthened by fingerprints of embedded devices. With this framework, we can assure the origin and correctness of digital information sent to autonomous systems, and enforce that only authorized members can send instructions to these devices. This protocol replaces the deterministic, pseudo-random seed in these PQC protocols with a fingerprint derived from the physical disorder of the embedded device to enhance security and maintain the integrity of the system. We demonstrate how this system can be used to send instructions, verify the origin of the instructions upon receipt, and certify the integrity of the instruction packet received. We also discuss situations in which an attacker attempts to falsify information and how to detect that malicious action. We measure the quality and performance of this prototype system by measuring the latency and bit error rates. We demonstrate this prototype system using the CRYSTALS-DILITHIUM digital signature algorithm (DSA).

show abstract

Section: Future Workmentioning

confidence: 99%