Abstract
Abstract“Classical keys,” i.e., secret keys stored permanently in digital form in nonvolatile memory, appear indispensable in modern computer security—but also constitute an obvious attack target in any hardware containing them. This contradiction has led to perpetual battle between key extractors and key protectors over the decades. It is long known that physical unclonable functions (PUFs) can at least partially overcome this issue, since they enable secure hardware without the above classical keys. Unfortunately, recent research revealed that many standard PUFs still contain other types of “secrets” deeper in their physical structure, whose disclosure to adversaries breaks security as well: Examples include the manufacturing variations in SRAM PUFs, the power-up states of SRAM PUFs, or the signal delays in Arbiter PUFs. Most of these secrets have already been extracted in viable attacks in the past, breaking PUF-security in practice. A second generation of physical security primitives now shows potential to resolve this remaining problem, however. In certain applications, so-called Complex PUFs, SIMPLs/PPUFs, and UNOs are able to realize not just hardware that is free of classical keys in the above sense, but completely “secret-free” instead. In the resulting hardware systems, adversaries could hypothetically be allowed to inspect every bit and every atom, and learn any information present in any form in the system,withoutbeing able to break security. Secret-free hardware would hence promise to be innately and permanently immune against any physical or malware-based key-extraction: There simply is no security–critical information to extract anymore. Our survey and tutorial paper takes the described situation as starting point, and categorizes, formalizes, and overviews the recently evolving area ofsecret-free security. We propose the attempt of making hardware completely secret-free as promising endeavor in future hardware designs, at least in those application scenarios where this is logically possible. In others, we suggest that secret-free techniques could be combined with standard PUFs and classical methods to construct hybrid systems with notably reduced attack surfaces.
Funder
Ludwig-Maximilians-Universität München
Publisher
Springer Science and Business Media LLC
Subject
Computer Networks and Communications,Software
Reference90 articles.
1. Anderson, R.J.: Security Engineering: A Guide to Building Dependable Distributed Systems. Wiley, New York (2010)
2. Armknecht, F., Maes, R., Sadeghi, A.R., Standaert, F.X., Wachsmann, C.: A formalization of the security features of physical functions. In: IEEE Symposium on Security & Privacy (2011)
3. Bauder, D.W.: An anti-counterfeiting concept for currency systems. Sandia National Labs, Albuquerque, NM, Technical Report, PTK-11990 (1983)
4. Beckmann, N., Potkonjak, M.: Hardware-based public-key cryptography with public physically unclonable functions. Inf. Hiding 2009, 206–220 (2009)
5. Bennett, C.H., Brassard, G.: Quantum cryptography: public-key distribution and coin tossing. In: Proceedings of IEEE International Conference on Computers, Systems and Signal Processing, Bangalore, India, pp. 175–179 (1984)
Cited by
6 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. SpyHammer: Understanding and Exploiting RowHammer Under Fine-Grained Temperature Variations;IEEE Access;2024
2. A Novel Fuzzy Identity-Based Encryption with Wireless PUF for IoT Device Authentication;2023 IEEE International Conference on High Performance Computing & Communications, Data Science & Systems, Smart City & Dependability in Sensor, Cloud & Big Data Systems & Application (HPCC/DSS/SmartCity/DependSys);2023-12-17
3. Actions Speak Louder Than Passwords: Dynamic Identity for Machine-to-Machine Communication;Proceedings of the 18th International Conference on Availability, Reliability and Security;2023-08-29
4. NEUROPULS: NEUROmorphic energy-efficient secure accelerators based on Phase change materials aUgmented siLicon photonicS;2023 IEEE European Test Symposium (ETS);2023-05-22
5. ALScA: A Framework for Using Auxiliary Learning Side-Channel Attacks to Model PUFs;IEEE Transactions on Information Forensics and Security;2023