Baokui Zhu,Xiaowen Jiang,Kai Huang,Miao Yu

DOI: https://doi.org/10.3390/s24010093

IF: 3.9

2024-01-01

Sensors

Abstract:Physical Unclonable Functions (PUFs) are significant in building lightweight Internet of Things (IoT) authentication protocols. However, PUFs are susceptible to attacks such as Machine-Learning(ML) modeling and statistical attacks. Researchers have conducted extensive research on the security of PUFs; however, existing PUFs do not always possess good statistical characteristics and few of them can achieve a balance between security and reliability. This article proposes a strong response-feedback PUF based on the Linear Feedback Shift Register (LFSR) and the Arbiter PUF (APUF). This structure not only resists existing ML modeling attacks but also exhibits good Strict Avalanche Criterion (SAC) and Generalized Strict Avalanche Criterion (GSAC). Additionally, we introduce a Two-Level Reliability Improvement (TLRI) method that achieves 95% reliability with less than 35% of the voting times and single-response generation cycles compared to the traditional pure majority voting method.

Haoyu Zhuang,Xiaodan Xi,Nan Sun,Michael Orshansky

DOI: https://doi.org/10.1109/tcsi.2019.2945247

2020-01-01

Abstract:This paper presents a strong silicon physical unclonable function (PUF) resistant to machine learning (ML) attacks. The PUF, termed the subthreshold current array PUF (SCA-PUF), consists of a pair of two-dimensional transistor arrays and a low-offset comparator. The proposed 65-bit SCA-PUF is fabricated in a 130nm process and allows 2(65) challenge-response pairs (CRPs). It consumes 68nW and 11pJ/bit while exhibiting high uniqueness, uniformity, and randomness. It achieves bit error rate (BER) of 5.8 for the temperature range of -20 to 80C and supply voltage variation of 10. The calibration-based CRP selection method improves BER to 0.4 with a 42 loss of CRPs. When subjected to ML attacks, the prediction error stays over 40 on 10(4) training points, which shows negligible loss in PUF unpredictability and $\sim 100\times $ higher resilience than the 65-bit arbiter PUF, 3-XOR PUF, and 3-XOR lightweight (LW) PUF.

Hongfei Wang,Wei Liu,Wenjie Cai,Yunxiao Lu,Caixue Wan

DOI: https://doi.org/10.1145/3687469

IF: 1.447

2024-09-18

ACM Transactions on Design Automation of Electronic Systems

Abstract:The physical unclonable function (PUF) is a widely used hardware security primitive. Before hacking into a PUF-protected system, intruders typically initiate attacks on the PUF as the first step. Many strong PUF designs have been proposed to thwart non-invasive attacks that exploit acquired CRPs. In this work, we propose a general framework for efficient attacks on strong PUFs by investigating from two perspectives, namely, statistical covariances in the challenge space and the design dependency among PUF compositions. The framework consists of two novel attack methods against a wide range of PUF families, including XOR APUFs, interpose PUFs, and bistable ring (BR)-PUFs. It can also exploit the knowledge of reliability information to improve attack efficiency with gradient optimization. We evaluate our proposed attacks through extensive experiments, running both software-based simulation and hardware implementations on FPGAs to compare with corresponding SOTA works. Considerable effort has been made in ensuring identical software/hardware conditions for a fair comparison. The results demonstrate that our framework significantly outperforms SOTA results. Moreover, we show that our framework can efficiently attack diverse PUF families built from entirely different types, while almost all existing works solely focused on attacking one or very limited number of PUF designs.

computer science, software engineering, hardware & architecture

Jin Miao,Meng Li,Subhendu Roy,Bei Yu

DOI: https://doi.org/10.1145/2966986.2967051

2016-01-01

Abstract:Conventional silicon physical unclonable function (PUF) extracts fingerprints from transistor's analog attributes, which are vulnerable to environmental and operational variations. Recently, digitalized PUF prototypes have emerged to overcome the vulnerability issues, however, the existing prototypes are either hybrid of analog-digital PUFs which are still under the shadow of vulnerability, or impractical for real-world implementation. To address the above limitations, we propose a learning resilient and reliable digital PUF (LRR-DPUF). The fingerprints are extracted from VLSI interconnect geometrical randomness induced by lithography variations. Crucially, we use strongly skewed latches to ensure the immunity against environmental and operational variations. Further, a cross-coupled, highly non-linear logic network is proposed to effectively spread and augment even subtle interconnect randomness, as well as to achieve strong resilience to machine learning attacks. We demonstrate that a 64-bit LRR-DPUF exhibits close to ideal statistical performances, including 0 intra Hamming Distance. We also mathematically prove that each output of the LRR-DPUF follows uniform distribution. Various state-of-the-art machine learning models show almost no better than random prediction accuracies when applied to LRR-DPUF.

Qian Wang,Mingze Gao,Gang Qu

DOI: https://doi.org/10.1145/3194554.3194590

2018-01-01

Abstract:Silicon Physical Unclonable Function (PUF) is arguably the most promising hardware security primitive. In particular, PUFs that are capable of generating a large amount of challenge response pairs (CRPs) can be used in many security applications. However, these CRPs can also be exploited by machine learning attacks to model the PUF and predict its response. In this paper, we first show that, based on data in the public domain, two popular PUFs that can generate CRPs (i.e., arbiter PUF and reconfigurable ring oscillator (RO) PUF) can be broken by simple logistic regression (LR) attack with about 99% accuracy. We then propose a feedback structure to XOR the PUF response with the challenge and challenge the PUF again to generate the response. Results show that this successfully reduces LR's learning accuracy to the lower 50%, but artificial neural network (ANN) learning attack still has an 80% success rate. Therefore, we propose a configurable ring oscillator based dual-mode PUF which works with both odd number of inverters (like the reconfigurable RO PUF) and even number of inverters (like a bistable ring (BR) PUF). Since currently there are no known attacks that can model both RO PUF and BR PUF, the dual-mode PUF will be resistant to modeling attacks as long as we can hide its working mode from the attackers, which we achieve with two practical methods. Finally, we implement the proposed dual-mode PUF on Nexys 4 FPGA boards and collect real measurement to show that it reduces the learning accuracy of LR and ANN to the mid-50% and low 60%, respectively. In addition, it meets the PUF requirements of uniqueness, randomness, and robustness.

Wang Jiadong,Cui Aijiao,Li Mengyang,Qu Gang,Li Huawei

DOI: https://doi.org/10.1109/AsianHOST.2016.7835554

2016-01-01

Abstract:Physical unclonable function (PUF) utilizes the unexpected intrinsic manufacturing process variations of device to generate unique bit streams for authentication, key generation and random number generation. It has emerged as a promising primitive to address various challenges in hardware security. Traditional PUF schemes, such as arbiter PUF and ring oscillator (RO) PUF, do not have efficient implementations on FPGA and thus limit their usage as FPGA becomes the dominate design platform for today's emerging applications. In this paper, we propose a novel look-up table (LUT) shift register (SR) based PUF scheme for FPGA. This PUF incurs ultra <sup xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink">1</sup> -low resource overhead, only two SLICEs to produce a 128-bit signature in our experimentation on XILINX Virtex-5 FPGA. Meanwhile, the PUF response are good in terms of uniqueness and robustness. At the same temperature, the proposed PUF has a 99%+ reliability on its response. When temperature changes between 25°C and 75°C, the robustness drops, but is still over 90%.

Paul Chin,Yuan Cao,Xiaojin Zhao,Leilei Zhang,Fan Zhang

DOI: https://doi.org/10.1109/AsianHOST47458.2019.9006716

2019-01-01

Abstract:Physical Unclonable Functions (PUFs) are considered as an attractive low-cost security anchor. The unique features of PUFs are dependent on the Nanoscale variations introduced during the manufacturing variations. Most PUFs exhibit an unreliability problem due to aging and inherent sensitivity to the environmental conditions. As a remedy to the reliability issue, helper data algorithms are used in practice. A helper data algorithm generates and stores the helper data in the enrollment phase in a secure environment. The generated helper data are used then for error correction, which can transform the unique feature of PUFs into a reproducible key. The key can be used to encrypt secret data in the security scheme. In contrast, this work shows that the fuzzy PUFs can be used to secret important data directly by an error-tolerant protocol without the enrollment phase and error-correction algorithm. In our proposal, the secret data is locked in a vault leveraging the unique fuzzy pattern of PUF. Although the noise exists, the data can then be released only by this unique PUF. The evaluation was performed on the most prominent intrinsic PUF - DRAM PUF. The test results demonstrate that our proposal can reach an acceptable reconstruction rate in various environment. Finally, the security analysis of the new proposal is discussed.

Zezhong Tu,Yongkang Xue,Pengpeng Ren,Feng Hao,Runsheng Wang,Meng Li,Jianfu Zhang,Zhigang Ji,Ru Huang

DOI: https://doi.org/10.1109/led.2021.3130606

IF: 4.8157

2022-01-01

IEEE Electron Device Letters

Abstract:A novel strong physical unclonable function (PUF), called Probability-based PUF (Prob-PUF), is proposed using the stochastic process of trap emission in nano-scaled transistors. For the first time, the information of trap emission probability is used in the PUF design. This new approach offers ideal immunity to machine learning (ML) attacks. Since Prob-PUF only stores a mathematical model, it naturally avoids the dilemma between the requirement of a large number of challenge-response pairs (CRPs) and the limited storage space, making it a potential solution for future secure storage.

Xiaodan Xi,Haoyu Zhuang,Nan Sun,Michael Orshansky

DOI: https://doi.org/10.23919/vlsic.2017.8008503

2017-01-01

Abstract:This paper presents a strong silicon physically unclonable function (PUF) immune to machine learning (ML) attacks. The PUF, termed the subthreshold current array (SCA) PUF, is composed of a pair of two-dimensional transistor arrays and a low-offset comparator. The fabricated PUF chip allows 2 65 challenge-response pairs (CRPs) and achieves high reliability with average bit error rate (BER) of 5.8% for temperatures -20 to 80°C and Vdd + 10%. The calibration-based CRPs filtering method effectively improves BER to 2.6% with a 10% loss of CRPs. When subjected to ML attacks, the PUF shows resilience that is 100X higher than known alternatives, with negligible loss in PUF unpredictability.

Yansong Gao,Said F. Al-Sarawi,Derek Abbott,Ahmad-Reza Sadeghi,Damith C. Ranasinghe

DOI: https://doi.org/10.48550/arXiv.1706.06232

2017-06-20

Abstract:Physical unclonable functions (PUFs), as hardware security primitives, exploit manufacturing randomness to extract hardware instance-specific secrets. One of most popular structures is time-delay based Arbiter PUF attributing to large number of challenge response pairs (CRPs) yielded and its compact realization. However, modeling building attacks threaten most variants of APUFs that are usually employed for strong PUF-oriented application---lightweight authentication---without reliance on the securely stored digital secrets based standard cryptographic protocols. In this paper, we investigate a reconfigurable latent obfuscation technique endowed PUF construction, coined as OB-PUF, to maintain the security of elementary PUF CRPs enabled authentication where a CRP is never used more than once. The obfuscation---determined by said random patterns---conceals and distorts the relationship between challenge-response pairs capable of thwarting a model building adversary needing to know the exact relationship between challenges and responses. A bit further, the obfuscation is hidden and reconfigured on demand, in other words, the patterns are not only invisible but also act as one-time pads that are only employed once per authentication around and then discarded. As a consequence, the OB-PUF demonstrates significant resistance to the recent revealed powerful Evaluation Strategy (ES) based modeling attacks where the direct relationship between challenge and response is even not a must. The OB-PUF's uniqueness and reliability metrics are also systematically studied followed by formal authentication capability evaluations.

Cryptography and Security

Jianrong Yao,Lihui Pang,Zhi Zhang,Wei Yang,Anmin Fu,Yansong Gao

DOI: https://doi.org/10.48550/arXiv.2110.00909

2022-04-26

Abstract:Physical Unclonable Function (PUF) is a hardware security primitive with a desirable feature of low-cost. Based on the space of challenge-response pairs (CRPs), it has two categories:weak PUF and strong PUF. Though designing a reliable and secure lightweight strong PUF is challenging, there is continuing efforts to fulfill this gap due to wide range of applications enabled by strong PUF. It was prospected that the combination of MAX and MIN bit-wise operation is promising for improving the modeling resilience when MAX and MIN are employed in the PUF recomposition. The main rationale lies on the fact that each bit-wise might be mainly vulnerable to one specific type of modeling attack, combining them can have an improved holistic resilience. This work is to first evaluate the main PUF performance, in particular,uniformity and reliability of the OR-AND-XOR-PUF(OAX-PUF)-(x, y, z)-OAX-PUF. Compared with the most used l-XOR-PUF, the (x, y, z)-OAX-PUF eventually exhibits better reliability given l=x+y+z without degrading the uniformity retaining to be 50%. We further examine the modeling resilience of the (x, y, z)-OAX-PUF with four powerful attacking strategies to date, which are Logistic Regression (LR) attack, reliability assisted CMA-ES attack, multilayer perceptron (MLP) attack, and the most recent hybrid LR-reliability attack. In comparison with the XOR-APUF, the OAX-APUF successfully defeats the CAM-ES attack. However, it shows no notable modeling accuracy drop against other three attacks, though the attacking times have been greatly prolonged to LR and hybrid LR-reliability attacks. Overall, the OAX recomposition could be an alternative lightweight recomposition method compared to XOR towards constructing strong PUFs if the underlying PUF, e.g., FF-APUF, has exhibited improved resilience to modeling attack, because the OAX incurs smaller reliability degradation compared to XOR.

Cryptography and Security

Rui Liu,Huaqiang Wu,Yachun Pang,He Qian,Shimeng Yu

DOI: https://doi.org/10.1109/AsianHOST.2017.8353997

2017-01-01

Abstract:Recently, the resistance variability of Resistive Random Access Memory (RRAM) based array has been exploited to design a weak Physical Unclonable Function (PUF) for the cryptographic key generation. Generally, memory-based PUF is weak PUF as the challenge-response pair (CRP) space is limited by the memory capacity. In this work, we propose a design of RRAM based strong PUF for device authentication by employing Secure Hash Algorithm (SHA). The key idea is to split the challenge bits into two segments. The first segment is fed into the RRAM array and the output of the RRAM array is mixed with the second segment as the input to the SHA module, thereby significantly increasing the CRP space. To analyze the properties of the proposed strong PUF such as uniqueness and reliability, the resistance variability is experimentally measured from the fabricated 1 kb HfO2 based RRAM arrays, and the read current distribution is then modeled. The simulation shows that when the number of bits from RRAM is larger than 8 bits, the proposed PUF can present good uniqueness. In order to achieve higher security against PUF modeling attack, however, more bits from RRAM array should be feed into SHA module. With 32-bit from RRAM array, it could achieve average uniqueness ~49.95%, uniformity of `1's ~49.81%, diffusiveness ~49.97% with tight distributions. The use of SHA imposes a strict requirement on the reliability, thus multiple RRAM cells are grouped and used to statistically minimize the risk of early retention failure of a single cell. On the other hand, the use of SHA provides a strong resistance against the machine learning attack as demonstrated through 3-layer multi-layer perceptron (MLP) modeling.

Jin Miao,Meng Li,Subhendu Roy,Yuzhe Ma,Bei Yu

DOI: https://doi.org/10.1109/tcad.2017.2740296

IF: 2.9

2017-01-01

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:Digital circuit physical unclonable function (PUF) has been attracting attentions for the merits of resilience to the environmental and operational variations that analog PUFs suffer from. Existing state-of-the-art digital circuit PUFs, however, are either hybrid of analog-digital circuits which are still under the shadow of vulnerability, or impractical for real-world applications. In this paper, we propose a novel highly nonlinear and secure digital PUF (D-PUF) and the spliced version SD-PUF. The fingerprints are extracted from intentionally induced very large-scale integration interconnect randomness during lithography process, as well as a post-silicon shuffling process. Strongly skewed CMOS latches are used to ensure the immunity against environmental and operational variations. Crucially, a highly nonlinear logic network is proposed to effectively spread and augment any subtle interconnect randomness, which also enables strong resilience against machine learning attacks. On top of it, the expandable architecture of the proposed logic network empowers a novel post-silicon shuffle-splice mechanism, where multiple randomly selected D-PUFs are spliced to be one SD-PUF, pushing the statistical security to a much higher level, while significantly reducing the mask cost per PUF device. It also decouples the trustworthy demands enforced to the foundries or other third party manufacturers. Our proposed PUFs demonstrate close to ideal performance in terms of statistical metrics, including 0 intra-Hamming distance. Various state-of-the-art machine learning models show prediction accuracies almost no better than random guesses when attacking to the proposed PUFs. We also mathematically prove the probability of existence of identical SD-PUF pair is significantly lower than that of D-PUF pair, e.g., such probability of an SD-PUF spliced by 30 D-PUFs is 2.3 x 10(-22), which is 19 order magnitude lower than that of D-PUF. Benefited from the proposed shuffle-splice mechanism, the mask cost per SD-PUF is also reduced by 300x than that of D-PUF.

Hanyong Shao,Yuejia Zhou,Weiqin Huang,Chang Su,Zhiyuan Fu,Wenpu Luo,Kechao Tang,Ru Huang

DOI: https://doi.org/10.1109/IEDM45741.2023.10413787

2023-01-01

Abstract:Enhancing the resistance of Physical Unclonable Function (PUF) to machine learning (ML) attacks while ensuring its reliability remains a critical challenge. In this work, we propose a novel strong PUF based on a 10×10 FeFET array, delivering high security, reliability, and reconfigurability. For the first time, the entropy source and CRP generation of PUF are co-optimized for robustness. We utilize the high variation in ferroelectric (FE) minor loop and high uniformity in major loop as reconfigurable static entropy source, then adopt non-linear Hamming distance comparison and window comparator for the generation of CPR. As a result, our approach reduces the accuracy of ML attacks by 20% compared to RRAM PUF, while keeping the raw bit error rate (BER) down to 1.7% at 100°C. Due to the high endurance of FeFETs, the capacity of reconfigurability reaches 1 × 10 <sup xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink">8</sup> . The PUF fits well for security applications due to its robustness and energy-efficiency.

Pengpeng Ren,Yongkang Xue,Linglin Jing,Lining Zhang,Runsheng Wang,Zhigang Ji

DOI: https://doi.org/10.1007/s11432-022-3722-8

2023-01-01

Science China Information Sciences

Abstract:The physical unclonable functions (PUFs) are novel cryptographic primitives in modern hardware security systems. Compared with traditional alternatives based on digital keys and non-volatile memory (NVM), the PUF system shows great unclonability, high efficiency, and physical attack resilience. However, the conventional PUF design suffers from weak machine learning immunity, high storage overhead, and unreliability, making it difficult to implement in the Internet of Things (IoT) and edge computing applications. This paper presents a new PUF design that could solve the proposed obstacles. By utilizing the emission probability of traps commonly found in nano-scaled transistors, a model-based PUF system with strong machine learning resistance could be achieved. This PUF design, called Prob-PUF, needs fewer challenge-response pairs (CRPs) space and reveals superior resistance to modeling attacks due to the mixture of stable/random bits in its output response. Moreover, the Prob-PUF system could reach a high level of uniqueness and robustness, making it a potential candidate for future cryptographically secured protocols within the IoT.

Ji-Liang Zhang,Qiang Wu,Yi-Peng Ding,Yong-Qiang Lv,Qiang Zhou,Zhi-Hua Xia,Xing-Ming Sun,Xing-Wei Wang

DOI: https://doi.org/10.1007/s11390-016-1616-8

2016-01-01

Abstract:Physical unclonable function (PUF) makes use of the uncontrollable process variations during the production of IC to generate a unique signature for each IC. It has a wide application in security such as FPGA intellectual property (IP) protection, key generation and digital rights management. Ring oscillator (RO) PUF and Arbiter PUF are the most popular PUFs, but they are not specially designed for FPGA. RO PUF incurs high resource overhead while obtaining less challenge-response pairs, and requires "hard macros" to implement on FPGAs. The arbiter PUF brings low resource overhead, but its structure has big bias when it is mapped on FPGAs. Anderson PUF can address these weaknesses of current Arbiter and RO PUFs implemented on FPGAs. However, it cannot be directly implemented on the new generation 28 nm FPGAs. In order to address these problems, this paper designs and implements a delay-based PUF that uses two LUTs in an SLICEM to implement two 16-bit shift registers of the PUF, 2-to-1 multiplexers in the carry chain to implement the multiplexers of the PUF, and any one of the 8 flip-flops to latch 1-bit PUF signatures. The proposed delay-based PUF is completely realized on 28 nm commercial FPGAs, and the experimental results show its high uniqueness, reliability and reconfigurability. Moreover, we test the impact of aging on it, and the results show that the effect of aging on the proposed PUF is insignificant, with only 6% bit-flips. Finally, the prospects of the proposed PUF in the FPGA binding and volatile key generation are discussed.

Yi Tang,Donghang Wu,Yongzhi Cao,Marian Margraf

DOI: https://doi.org/10.1109/cases51649.2020.9243781

2020-01-01

Abstract:The physically unclonable function (PUF) is a hardware cryptographic primitive that provides identifications based on inevitable manufacturing variations, thus, as the name states, being physically unclonable. The arbiter PUF (APUF, [5] ) is a well-studied PUF design based on variational signal delays in silicon/electronic components. Using APUFs as building blocks, XOR APUF ( [12] ), lightweight secure PUF ( [9] ), feed forward APUF ( [6] , [7] ), etc. are proposed and expected to be more secure PUF designs. However, it is discovered that all of these canonical arbiter-based PUF designs suffer from machine learning modeling attacks ( [1] , [3] , [11] ). Recently, the interpose PUF (iPUF, [10] ) is proposed as a new arbiter-based PUF design that is resilient to state-of-the-art machine learning attacks. In this paper we propose a new PUF design called shift PUF that directly enhances APUF (which, to remark, is the building block of all arbiter-based PUF designs) by, as a conjecture, squaring its machine learning complexity, and consequently brings the same squaring benefit to all arbiter-based PUFs as well. To emphasize, the shift PUF itself is not a secure PUF design, and the technique of substituting APUFs with shift PUFs also not necessarily turns insecure PUF designs into secure PUF designs (the notion of security immediately follows in the next paragraph); nevertheless the technique greatly benefits already secure arbiter-based PUF designs with squared machine learning complexities.

Yi Zhang,Min Zhu,Bohan Yang,Leibo Liu

DOI: https://doi.org/10.1088/1742-6596/1619/1/012003

2020-01-01

Journal of Physics Conference Series

Abstract:Physical unclonable function (PUF) generates unique secret keys from unavoidable IC manufacturing variations, which can eliminate high computation expense and additional key storage. The inherent flexibility and lower time-to-market have made field programmable gate array (FPGA) the platform of choice for faster implementation. However, logic elements on FPGA are predefined while some types of PUFs need strictly mirrored symmetric routing. This paper presents a robust and FPGA friendly PUF based on oscillator collapse (OC-PUF) with million number of challenge-response pairs (CRPs). Mirrored routes are obtained with a novel delay cell design and a signal path configuration technique. In the meanwhile, the response bias issues on FPGA is effectively resolved. Measured on Altera DE2-115, the average interchip hamming distance (inter-chip HD) of the proposed OC-PUF is 46.7%. After applying dynamic threshold with a value 255, intra-chip hamming distance (intra-chip HD) dropped to 5.46E-06 at nominal conditions.

Gaoxiang Li,Khalid T. Mursi,Ahmad O. Aseeri,Mohammed S. Alkatheiri,Yu Zhuang

DOI: https://doi.org/10.48550/arXiv.2206.01314

2022-06-03

Abstract:Physical Unclonable Functions (PUFs) are promising security primitives for resource-constrained network nodes. The XOR Arbiter PUF (XOR PUF or XPUF) is an intensively studied PUF invented to improve the security of the Arbiter PUF, probably the most lightweight delay-based PUF. Recently, highly powerful machine learning attack methods were discovered and were able to easily break large-sized XPUFs, which were highly secure against earlier machine learning attack methods. Component-differentially-challenged XPUFs (CDC-XPUFs) are XPUFs with different component PUFs receiving different challenges. Studies showed they were much more secure against machine learning attacks than the conventional XPUFs, whose component PUFs receive the same challenge. But these studies were all based on earlier machine learning attack methods, and hence it is not clear if CDC-XPUFs can remain secure under the recently discovered powerful attack methods. In this paper, the two current most powerful two machine learning methods for attacking XPUFs are adapted by fine-tuning the parameters of the two methods for CDC-XPUFs. Attack experiments using both simulated PUF data and silicon data generated from PUFs implemented on field-programmable gate array (FPGA) were carried out, and the experimental results showed that some previously secure CDC-XPUFs of certain circuit parameter values are no longer secure under the adapted new attack methods, while many more CDC-XPUFs of other circuit parameter values remain secure. Thus, our experimental attack study has re-defined the boundary between the secure region and the insecure region of the PUF circuit parameter space, providing PUF manufacturers and IoT security application developers with valuable information in choosing PUFs with secure parameter values.

Cryptography and Security,Machine Learning

Weize Yu,Jia Chen

DOI: https://doi.org/10.48550/arXiv.1810.07250

2018-09-12

Abstract:In this letter, a physical unclonable function (PUF)-advanced encryption standard (AES)-PUF is proposed as a new PUF architecture by embedding an AES cryptographic circuit between two conventional PUF circuits to conceal their challenge-to-response pairs (CRPs) against machine learning attacks. Moreover, an internal confidential data is added to the secret key of the AES cryptographic circuit in the new PUF architecture to update the secret key in real-time against side-channel attacks. As shown in the results, even if 1 million number of data are enabled by the adversary to implement machine learning or side-channel attacks, the proposed PUF can not be cracked. By contrast, only 5,000 (1,000) number of data are sufficient to leak the confidential information of a conventional PUF via machine learning (side-channel) attacks.

Cryptography and Security