A. Santana-Andreo,P. Saraza-Canflanca,R. Castro-Lopez,E. Roca,F.V. Fernandez

DOI: https://doi.org/10.1016/j.aeue.2024.155147

IF: 3.169

2024-01-22

AEU - International Journal of Electronics and Communications

Abstract:Physical Unclonable Functions (PUFs) have gained attention as a lightweight hardware security primitive. In particular, the SRAM-based PUF uses the unpredictable power-up value of the cells within an SRAM. Although these values should ideally be always the same within each SRAM to accomplish a correct PUF operation, this is often not the case, especially when factors like circuit aging are considered. While certain studies explore the effects of aging on SRAM PUFs, they often simplify the analysis. For instance, some studies assume that only Bias Temperature Instability (BTI) contributes to circuit degradation while others evaluate the overall degradation without accounting for the stochastic effects of aging on each individual cell. In this work, we first perform a detailed characterization of the nature of aging in SRAM PUFs, demonstrating that the impact of Non-Conductive Hot-Carrier Injection cannot be neglected. We also show that different cells degrade differently, highlighting the importance of accounting for the stochasticity of aging. After that, a method based on the Data Retention Voltage metric to select the cells with the most stable power-up response is introduced. Using these cells to generate the PUF identifier will result in a more stable response, and thus a better PUF performance.

telecommunications,engineering, electrical & electronic

Rui Wang,Georgios Selimis,Roel Maes,Sven Goossens

DOI: https://doi.org/10.48550/arXiv.2007.15909

2020-07-31

Cryptography and Security

Abstract:The qualities of Physical Unclonable Functions (PUFs) suffer from several noticeable degradations due to silicon aging. In this paper, we investigate the long-term effects of silicon aging on PUFs derived from the start-up behavior of Static Random Access Memories (SRAM). Previous research on SRAM aging is based on transistor-level simulation or accelerated aging test at high temperature and voltage to observe aging effects within a short period of time. In contrast, we have run a long-term continuous power-up test on 16 Arduino Leonardo boards under nominal conditions for two years. In total, we collected around 175 million measurements for reliability, uniqueness and randomness evaluations. Analysis shows that the number of bits that flip with respect to the reference increased by 19.3% while min-entropy of SRAM PUF noise improves by 19.3% on average after two years of aging. The impact of aging on reliability is smaller under nominal conditions than was previously assessed by the accelerated aging test. The test we conduct in this work more closely resembles the conditions of a device in the field, and therefore we more accurately evaluate how silicon aging affects SRAM PUFs.

Sergio Vinagrero,Honorio Martin,Alice de Bignicourt,Elena-Ioana Vatajelu,Giorgio Di Natale

DOI: https://doi.org/10.1038/s41597-023-02225-9

2023-05-27

Abstract:Large-scale parameter characterization of Physical Unclonable Functions (PUFs) is of paramount importance in order to assess the quality and thus the suitability of such PUFs which would then be developed as an industrial-grade solution for hardware root of trust. Carrying out a proper characterization requires a large number of devices that need to be repeatedly sampled at various conditions. These prerequisites make PUF characterization process a very time-consuming and expensive task. Our work presents a dataset for the study of SRAM-based PUFs on microcontrollers; it includes full SRAM readouts along with internal voltage and temperature sensors of 84 microcontrollers of STM32 type. Data has been gathered with a custom-made and open platform designed for the automatic acquisition of SRAM readouts of such devices. This platform also provides possibilities of experimenting aging and reliability properties.

Rui Liu,Huaqiang Wu,Yachun Pang,He Qian,Shimeng Yu

DOI: https://doi.org/10.1109/hst.2016.7495549

2016-01-01

Abstract:This work presents a highly reliable and tamper-resistant design of Physical Unclonable Function (PUF) exploiting Resistive Random Access Memory (RRAM). The RRAM PUF properties such as uniqueness and reliability are experimentally measured on 1 kb HfO 2 based RRAM arrays. Firstly, our experimental results show that selection of the split reference and offset of the split sense amplifier (S/A) significantly affect the uniqueness. More dummy cells are able to generate a more accurate split reference, and relaxing transistor's sizes of the split S/A can reduce the offset, thus achieving better uniqueness. The average inter-Hamming distance (HD) of 40 RRAM PUF instances is ~42%. Secondly, we propose using the sum of the read-out currents of multiple RRAM cells for generating one response bit, which statistically minimizes the risk of early retention failure of a single cell. The measurement results show that with 8 cells per bit, 0% intra-HD can maintain more than 50 hours at 150 °C or equivalently 10 years at 69 °C by 1/kT extrapolation. Finally, we propose a layout obfuscation scheme where all the S/A are randomly embedded into the RRAM array to improve the RRAM PUF's resistance against invasive tampering. The RRAM cells are uniformly placed between M4 and M5 across the array. If the adversary attempts to invasively probe the output of the S/A, he has to remove the top-level interconnect and destroy the RRAM cells between the interconnect layers. Therefore, the RRAM PUF has the “self-destructive” feature. The hardware overhead of the proposed design strategies is benchmarked in 64 × 128 RRAM PUF array at 65 nm, while these proposed optimization strategies increase latency, energy and area over a naive implementation, they significantly improve the performance and security.

Yansong Gao,Yang Su,Wei Yang,Shiping Chen,Surya Nepal,Damith C. Ranasinghe

DOI: https://doi.org/10.48550/arXiv.1902.03031

2019-02-08

Abstract:A securely maintained key is the premise upon which data stored and transmitted by ubiquitously deployed resource limited devices, such as those in the Internet of Things (IoT), are protected. However, many of these devices lack a secure non-volatile memory (NVM) for storing keys because of cost constraints. Silicon physical unclonable functions (PUFs) offering unique device specific secrets to electronic commodities are a low-cost alternative to secure NVM. As a physical hardware security primitive, reliability of a PUF is affected by thermal noise and changes in environmental conditions; consequently, PUF responses cannot be directly employed as cryptographic keys. A fuzzy extractor can turn noisy PUF responses into usable cryptographic keys. However, a fuzzy extractor is not immediately mountable on (highly) resource constrained devices due to its implementation overhead. We present a methodology for constructing a lightweight and secure PUF key generator for resource limited devices. In particular, we focus on PUFs constructed from pervasively embedded SRAM in modern microcontroller units and use a batteryless computational radio frequency identification (CRFID) device as a representative resource constrained IoT device in a case study.

Cryptography and Security

Yachuan Pang,Huaqiang Wu,Bin Gao,Ning Deng,Dong Wu,Rui Liu,Shimeng Yu,An Chen,He Qian

DOI: https://doi.org/10.1109/led.2016.2647230

IF: 4.8157

2017-01-01

IEEE Electron Device Letters

Abstract:RRAM-based physical unclonable function (PUF) leveraging the remarkable resistance variability has been proposed and experimentally demonstrated on a 1-kb one-transistor one-resistor array. In this letter, a novel differential read-out method is utilized to reduce the effect of resistance window degradation. The RRAM PUF reliability is optimized through a reliability-enhancement design and oxide stack engineering. The experimental results show that the optimized RRAM PUF demonstrates nearly ideal uniqueness with the inter-chip Hamming distance close to 50%. The reliability of the optimized RRAM PUF is improved over the prior work. The intra-chip Hamming distance is close to the ideal value 0%, which can be sustained for a lifetime of more than ten years at 80 degrees C. This letter demonstrates that RRAM PUF has great potential for robust lightweight security solutions in IoT applications.

Bohan Lin,Yachuan Pang,Bin Gao,Jianshi Tang,Dong Wu,Ting-Wei Chang,Wei-En Lin,Xiaoyu Sun,Shimeng Yu,Meng-Fan Chang,He Qian,Huaqiang Wu

DOI: https://doi.org/10.1109/JSSC.2021.3050295

IF: 5.4

2021-01-01

IEEE Journal of Solid-State Circuits

Abstract:Physically unclonable function (PUF) has been increasingly used as a promising primitive for hardware security with a wide range of applications in the Internet of Things (IoT). In recent years, novel PUF techniques based on resistive switching mechanism in various emerging nonvolatile memories have demonstrated superior performance on reliability and integration density. In this work, a resistive random access memory (RRAM)-based PUF chip with 8-kb capacity is developed. Two operation modes, namely differential mode and median mode, are embedded on chip. To implement these modes, a current sampling-based sense amplifier is designed to distinguish the current values of the PUF cells and the reference cell. In addition, a split-resistance scheme is proposed to enhance the PUF's reliability significantly. The experiment results show that the differential PUF exhibits excellent performance with native bit error rate (N-BER) below 6 x 10(-6) and inter-Hamming distance (inter-HD) of 49.99%. In the meanwhile, the reconfigurability of PUF challenge-response pairs (CRPs) is demonstrated with 49.77% and 47.29% reconfigure-Hamming distance (reconfigure-HD) in the median mode and the differential mode, respectively.

Soubhagya Sutar,Arnab Raha,Devadatta M. Kulkarni,Rajeev Shorey,Jeffrey D. Tew,Vijay Raghunathan

DOI: https://doi.org/10.1145/3105915

2018-01-01

Abstract:Physically Unclonable Functions (PUFs) have proved to be an effective and low-cost measure against counterfeiting by providing device authentication and secure key storage services. Memory-based PUF implementations are an attractive option due to the ubiquitous nature of memory in electronic devices and the requirement of minimal (or no) additional circuitry. Dynamic Random Access Memory-- (DRAM) based PUFs are particularly advantageous due to their large address space and multiple controllable parameters during response generation. However, prior works on DRAM PUFs use a static response-generation mechanism making them vulnerable to security attacks. Further, they result in slow device authentication, are not applicable to commercial off-the-shelf devices, or require DRAM power cycling prior to authentication. In this article, we propose D-PUF, an intrinsically reconfigurable DRAM PUF based on the idea of DRAM refresh pausing. A key feature of the proposed DRAM PUF is reconfigurability, that is, by varying the DRAM refresh-pause interval, the challenge-response behavior of the PUF can be altered, making it robust to various attacks. The article is broadly divided into two parts. In the first part, we demonstrate the use of D-PUF in performing device authentication through a secure, low-overhead methodology. In the second part, we show the generation of true random numbers using D-PUF. The design is implemented and validated using an Altera Stratix IV GX FPGA-based Terasic TR4-230 development board and several off-the-shelf 1GB DDR3 DRAM modules. Our experimental results demonstrate a 4.3×-6.4× reduction in authentication time compared to prior work. Using controlled temperature and accelerated aging tests, we also demonstrate the robustness of our authentication mechanism to temperature variations and aging effects. Finally, the ability of the design to generate random numbers is verified using the NIST Statistical Test Suite.

Joshua Hovanes,Yadi Zhong,Ujjwal Guin

DOI: https://doi.org/10.48550/arXiv.2208.02883

2022-08-04

Cryptography and Security

Abstract:Data recovery has long been a focus of the electronics industry for decades by security experts, focusing on hard disk recovery, a type of non-volatile memory. Unfortunately, none of the existing research, neither from academia, industry, or government, have ever considered data recovery from volatile memories. The data is lost when it is powered off, by definition. To the best of our knowledge, we are the first to present an approach to recovering data from a static random access memory. It is conventional wisdom that SRAM loses its contents whenever it turns off, and it is not required to protect sensitive information, e.g., the firmware code, secret encryption keys, etc., when an SRAM-based computing system retires. Unfortunately, the recycling of integrated circuits poses a severe threat to the protection of intellectual properties. In this paper, we present a novel concept to retrieve SRAM data as aging leads to a power-up state with an imprint of the stored values. We show that our proposed approaches can partially recover the previously used SRAM content. The accuracy of the recovered data can be further increased by incorporating multiple SRAM chips compared to a single one. It is impossible to retrieve the prior content of some stable SRAM cells, where aging shifts these cells towards stability. As the locations of these cells vary from chip to chip due to uncontrollable process variation, the same cell has a higher chance of being unstable or stable against aging in any of the chips, which helps us recover the content. Finally, majority voting is used to combine a set of SRAM chips' data to recover the stored data. We present our experimental result using commercial off-the-shelf SRAMs with stored binary image data before performing accelerated aging. We demonstrate the successful partial retrieval on SRAMs that are aged with as little as 4 hours of accelerated aging with 85C.

Yachuan Pang,Bin Gao,Dong Wu,Shengyu Yi,Qi Liu,Wei-Hao Chen,Ting-Wei Chang,Wei-En Lin,Xiaoyu Sun,Shimeng Yu,He Qian,Meng-Fan Chang,Huaqiang Wu

DOI: https://doi.org/10.1109/isscc.2019.8662307

2019-01-01

Abstract:Physically unclonable functions (PUFs) are promising primitives for hardware security with wide applications in the lnternet of Things (IoT), e.g., authentication and encryption key generation [1, 2]. Most silicon PUFs utilize process variability of semiconductor manufacturing [1, 3, 4]. These implementations are sensitive to variations in operating conditions (e.g., supply voltage and temperature variations) and undergo significant native bit-error-rates (N-BERs). Thus, additional stabilizing strategies, such as ECC, majority voting, and masking, are necessary. Furthermore, the PUF key after enrollment cannot be changed in prior implementations [1–5]. This could be unsafe if the PUFs are repeatedly used in insecure environments, as PUFs suffer from the challenges of ownership change and overuse (Fig. 25.2.1).

Jianguo Yang,Deyang Chen,Qinting Ding,Jinbei Fang,Xiaoyong Xue,Hangbing Lv,Xiaoyang Zeng,Ming Liu

DOI: https://doi.org/10.1109/iedm13553.2020.9372050

2020-01-01

Abstract:RRAM suffers from poor retention with short-term memory time when using low compliance current for programing. However, the short-term memory time exhibits ideal randomness, which can be exploited as an entropy source for physically unclonable function (PUF). In this work, we demonstrated a novel PUF utilizing the stochastic short-term memory time of oxide-based RRAM. The proposed PUF was implemented on a 256Kb HfO 2 /WO x bilayer RRAM test chip in 0.13μm logic process. The RRAM PUF is capable of regenerating >10 20 times after 10 years@115°C and the bit error rate (BER) remains <; 0.08% at the temperature of up to 115°C for the read voltage of 0.1-0.7V, exhibiting strong resiliency against environmental variations. The average inter-chip Hamming distance (HD) is 0.4999 and the average intra-chip HD is 0.0009. The energy efficiency is 0.19 pJ/bit.

Y. Yoshimoto,Y. Katoh,S. Ogasahara,Z. Wei,K. Kouno

DOI: https://doi.org/10.1109/vlsit.2016.7573433

2016-01-01

Abstract:This paper presents a secure application-a physically unclonable function (PUF)-that uses the physical property of resistive random access memory (ReRAM). The proposed PUF-generating method and reproducing algorithm achieves highly reliable with bit error rate (BER) <; 0.5% and reproduction exceeding 10 10 times at -40 to 125°C after 10 years at 125°C and high uniqueness as evidenced by passing NIST tests. Evaluations on 40nm ReRAM test chips have demonstrated the feasibility of a scaled-down ReRAM cell enhanced with PUF.

Qingxiao Zhou,Youyu Wu,Min Zhu,Wei Ge,jinjiang Yang

DOI: https://doi.org/10.1117/12.2649482

2022-01-01

Abstract:SRAM PUF is already embedded in MCU as a traditional memory, it can be used as a PUF module without hardware modification and additional hardware overhead. However, due to different working environments such as temperature and voltage, the response sequence generated by SRAM PUF is not necessarily the same for the same excitation. Therefore, the resulting response sequence needs to be processed to get a unique stable key. In this paper, a soft decision fuzzy extractor scheme based on RM cascade code is proposed, and the simulation verification and reliability test are carried out by using the system simulation platform, and the final results show that the error rate is below 0.08, the reliability reaches more than 0.999999, the required SRAM number is reduced to 2464, which is reduced by 47.57％ compared with the traditional hard judgment [12], and the consistency index can reach 99.99 in the temperature range of 20℃~80℃.

Xian Zhang,Guangyu Sun,Yaojun Zhang,Yiran Chen,Hai Li,Wujie Wen,Jia Di

DOI: https://doi.org/10.1109/aspdac.2016.7428035

2016-01-01

Abstract:Physical Unclonable Functions (PUFs) have been widely proposed as security primitives to provide device identification and authentication. Recently, PUFs based on Non-volatile Memory (NVM) are widely proposed since the promise of NVMs' wide application. In addition, NVM-based PUFs are considered to be more immune to invasive attack and simulation attack than CMOS-based PUFs. However, the existing NVM-based PUF either shows the unreliability under environmental variations or need extra modifications to the IC manufacturing process. In this work, we propose err-PUF, a novel PUF design based on the cell error rate distribution of STT-RAM. Instead of using the distribution directly, we generate a stable fingerprint based on a novel concept called Error-rate Differential Pair (EDP) without modifications to the read/write circuits. Comprehensive results demonstrate that err-PUF can achieve sufficient reliability under environmental variations, which can significantly impact the cell error rates. Moreover, compared with existing approaches, err-PUF has a higher speed and lower power consumption with negligible overhead.

Lan Dai,Qiangqiang Yan,Shengyu Yi,Wenkai Liu,He Qian

DOI: https://doi.org/10.1007/s12204-019-2043-0

2019-01-01

Journal of Shanghai Jiaotong University (Science)

Abstract:Due to the unique response mechanism, physical unclonable function (PUF) has been extensively studied as a hardware security primitive. And compared to other PUFs, the resistive random access memory (RRAM) based PUF has more flexibility with the change of conductive filaments. In this work, we propose an exclusive or (XOR) strong PUF based on the 1 Kbit 1-transistor-1-resistor (1T1R) arrays, and unlike the traditional RRAM based strong PUF, the XOR PUF has a stronger anti-machine learning attack ability in our experiments. The reliability of XOR RRAM PUF is determined by the read instability, thermal dependence of RRAM resistance, and aging. We used a split current distribution scheme to make the reliability of XOR PUF significantly improved. After baking for 50 h at a high temperature of 150°C, the intra-chip Hamming distance (Intra-HD) only increased from 0 to 4.5%. The inter-chip Hamming distance (Inter-HD) and uniformity are close to 50% (ideally). And it is proven through the NIST test that XOR PUF has a high uniqueness.

Abdel Alheyasat,Gabriel Torrens,Sebastia A. Bota,Bartomeu Alorda

DOI: https://doi.org/10.3390/electronics10121479

2024-12-02

Abstract:Physically unclonable functions (PUFs) are used as low-cost cryptographic primitives in device authentication and secret key creation. SRAM-PUFs are well-known as entropy sources; nevertheless, due of non-deterministic noise environment during the power-up process, they are subject to low challenge-response repeatability. The dependability of SRAM-PUFs is usually accomplished by combining complex error correcting codes (ECCs) with fuzzy extractor structures resulting in an increase in power consumption, area, cost, and design complexity. In this study, we established effective metrics on the basis of the separatrix concept and cell mismatch to estimate the percentage of cells that, due to the effect of variability, will tend to the same initial state during power-up. The effects of noise and temperature in cell start-up processes were used to validate the proposed metrics. The presented metrics may be applied at the SRAM-PUF design phases to investigate the impact of different design parameters on the percentage of reliable cells for PUF applications.

Cryptography and Security

Enas Abulibdeh,Leen Younes,Baker Mohammad,Khaled Humood,Hani Saleh,Mahmoud Al-Qutayri

DOI: https://doi.org/10.1109/tifs.2024.3354115

IF: 7.231

2024-02-06

IEEE Transactions on Information Forensics and Security

Abstract:The Physical Unclonable Function (PUF) is a security mechanism that takes advantage of the physical variations in a device to create a unique response that can be used as a device signature or secure key. However, many DRAM-based PUFs violate the operating rules of commodity DRAM to exploit a source of entropy in the DRAM read path. This work proposes a fast and reliable DRAM-based PUF that evaluates the variation of adjacent cells and produces the response through the normal read operation. The proposed design is implemented using 65-nm technology, and a detailed statistical SPICE simulation verifies its validity. The statistical analysis shows that the proposed PUF achieves 54.19% uniformity and 49.43% uniqueness, with 98% of the investigated responses achieving a Shannon entropy of 0.95. Additionally, the proposed design generates the response by , which is at least 66.7 times faster than existing systems. Furthermore, the proposed design uses the relative behavior of cells, which allows for stable responses against temperature and voltage variations, eliminating the need for error correction codes. The proposed PUF also shows resiliency against machine learning-based modeling attacks, as the prediction accuracy does not exceed 55% over 5K Challenge-Response Pairs (CRPs). The area overhead is negligible as the proposed design uses standard circuits, with the addition of only one multiplexer at the inputs of the row buffer.

computer science, theory & methods,engineering, electrical & electronic

Jeeson Kim,Taimur Ahmed,Hussein Nili,Jiawei Yang,Doo Seok Jeong,Paul Beckett,Sharath Sriram,Damith C. Ranasinghe,Omid Kavehei

DOI: https://doi.org/10.48550/arXiv.1611.04665

2016-11-15

Abstract:A unique set of characteristics are packed in emerging nonvolatile reduction-oxidation (redox)-based resistive switching memories (ReRAMs) such as their underlying stochastic switching processes alongside their intrinsic highly nonlinear current-voltage characteristic, which in addition to known nano-fabrication process variation make them a promising candidate for the next generation of low-cost, low-power, tiny and secure Physically Unclonable Functions (PUFs). This paper takes advantage of this otherwise disadvantageous ReRAM feature using a combination of novel architectural and peripheral circuitry. We present a physical one-way function, nonlinear resistive Physical Unclonable Function (nrPUF), potentially applicable in variety of cyber-physical security applications given its performance characteristics. We experimentally verified performance of Valency Change Mechanism (VCM)-based ReRAM in nano-fabricated crossbar arrays across multiple dies and runs. In addition to a massive pool of Challenge-Response Pairs (CRPs), using a combination of experimental and simulation, our proposed PUF shows a reliability of 98.67%, a uniqueness of 49.85%, a diffuseness of 49.86%, a uniformity of 47.28%, and a bit-aliasing of 47.48%.

Emerging Technologies,Other Condensed Matter

Minte Song,Nan Liu,Shuaiyang Zhou,Zhengguang Wang,Zhanqiang Ru,Peng Ding,Wei Huang,Helun Song

DOI: https://doi.org/10.23919/cje.2022.00.406

IF: 1.019

2024-01-01

Chinese Journal of Electronics

Abstract:Silicon physical unclonable function(PUF)implemented by static random access memory(SRAM)exists inherent demerit of unstable cells due to noise of environment and circuits,which significantly restricts its re-producibility.In this paper,a 16T SRAM cell with reset-delay circuit and a 2-stage voltage ramp up is fabricated and reported.Compared to conventional SRAM structure,each PUF cell adds a pair of pull-up PMOS(P-channel metal oxide semiconductor)and pull-down NMOS(N-channel metal oxide semiconductor)controlled by reset and delayed-reset signals respectively,resulting in two positive feedback stages with different amplification coefficients when the voltage is ramped up.PUF array consists of 4064 cells,322 dummy cells and a group of 8 series-connected inverters with an area of 304 μm × 650 μm to match the digital post-processing module.PUF test chip was fabricated in HH-Grace 110 nm platform with total area 1140 × 1140 μm2.The average HDintra(intra-chip Hamming distance,also bit error rate,BER)and HDinter(inter-chip Hamming distance)values of the 50 PUF chips in SOP16 package mea-sured at normal point(1.5 V/25 ℃)were 1.92％and 49.85％,respectively.

Pai-Yu Chen,Runchen Fang,Rui Liu,Chaitali Chakrabarti,Yu Cao,Shimeng Yu

DOI: https://doi.org/10.1109/HST.2015.7140231

2015-01-01

Abstract:This work presents the optimized design of a physical unclonable function (PUF) primitive based on the cross-point resistive random access memory (RRAM) array. The randomness of the PUF comes from the resistance variation of RRAM cells in the array. A four-cell selection scheme is proposed to create a large number of challenge-response pairs necessary for achieving a high security level. To analyze the performance of the PUF with respect to uniqueness and reliability, the RRAM cross-point array is fabricated and the device parameters are calibrated from the experimental data. Our study shows that the RRAM PUF can function properly across a wide temperature range without degradation in the performance. However, IR drop due to the interconnect resistance in the array can potentially hamper the performance. To mitigate the effect of IR drop, a reverse scaling rule on the feature size (F) is proposed for RRAM PUF. While this increases the area of the RRAM PUF, it improves the PUF performance significantly. Compared to a conventional SRAM PUF in 45nm node, a RRAM PUF array size of 1024×1024 with relaxed F=200nm has -45% lower area, while offering better robustness against invasive and side-channel attacks.