Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios

C.J. Kusters; T. Ignatenko; Roel Maes; E. van der Sluis; G. Selimis; F.M.J. Willems

doi:10.1109/ISIT.2017.8006840

Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios

C.J. Kusters, T. Ignatenko, Roel Maes, E. van der Sluis, G. Selimis, F.M.J. Willems

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

15 Citations (Scopus)

Abstract

Fuzzy commitment and syndrome-based schemes are two well-known helper data schemes used to bind and generate, respectively, a secret key to/from SRAM-PUF observations. To allow the decoder to reconstruct this secret key from a new (verification) observation of an SRAM-PUF, an encoder has to generate so-called helper data. This helper data is a function of an SRAM-PUF enrollment observation and, in case of fuzzy commitment, the secret key. The helper data is assumed to be public and thus must leak no information about the secret key. It is known that both schemes can achieve secrecy capacity equal to the mutual information between enrollment and verification SRAM-PUF observations at zero secrecy leakage, when the observations are unbiased and a single enrollment is performed. We study here the situation when multiple SRAM-PUF observations are used to create multiple secret keys. First, we introduce a symmetry property for multiple SRAM-PUF observations. For such symmetric SRAM-PUFs, we show that, in both helper data schemes, the helper data corresponding to multiple SRAM-PUF observations provide no information about any of the secret keys.

Original language	English
Title of host publication	Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany
Place of Publication	Piscataway
Publisher	Institute of Electrical and Electronics Engineers
Pages	1803-1807
Number of pages	5
ISBN (Electronic)	978-1-5090-4096-4
ISBN (Print)	978-1-5090-4097-1
DOIs	https://doi.org/10.1109/ISIT.2017.8006840
Publication status	Published - 2017
Event	2017 IEEE International Symposium on Information Theory, ISIT 2017 - Aachen, Germany Duration: 25 Jun 2017 → 30 Jun 2017

Conference

Conference	2017 IEEE International Symposium on Information Theory, ISIT 2017
Abbreviated title	ISIT
Country/Territory	Germany
City	Aachen
Period	25/06/17 → 30/06/17

Access to Document

10.1109/ISIT.2017.8006840

Cite this

Kusters, C. J., Ignatenko, T., Maes, R., van der Sluis, E., Selimis, G., & Willems, F. M. J. (2017). Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios. In Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany (pp. 1803-1807). Article 8006840 Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/ISIT.2017.8006840

@inproceedings{d17ba1b4da344a96b6ec4dfa0cb5fb64,

title = "Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios",

abstract = "Fuzzy commitment and syndrome-based schemes are two well-known helper data schemes used to bind and generate, respectively, a secret key to/from SRAM-PUF observations. To allow the decoder to reconstruct this secret key from a new (verification) observation of an SRAM-PUF, an encoder has to generate so-called helper data. This helper data is a function of an SRAM-PUF enrollment observation and, in case of fuzzy commitment, the secret key. The helper data is assumed to be public and thus must leak no information about the secret key. It is known that both schemes can achieve secrecy capacity equal to the mutual information between enrollment and verification SRAM-PUF observations at zero secrecy leakage, when the observations are unbiased and a single enrollment is performed. We study here the situation when multiple SRAM-PUF observations are used to create multiple secret keys. First, we introduce a symmetry property for multiple SRAM-PUF observations. For such symmetric SRAM-PUFs, we show that, in both helper data schemes, the helper data corresponding to multiple SRAM-PUF observations provide no information about any of the secret keys.",

author = "C.J. Kusters and T. Ignatenko and Roel Maes and {van der Sluis}, E. and G. Selimis and F.M.J. Willems",

year = "2017",

doi = "10.1109/ISIT.2017.8006840",

language = "English",

isbn = "978-1-5090-4097-1 ",

pages = "1803--1807",

booktitle = "Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany",

publisher = "Institute of Electrical and Electronics Engineers",

address = "United States",

note = "2017 IEEE International Symposium on Information Theory, ISIT 2017, ISIT ; Conference date: 25-06-2017 Through 30-06-2017",

}

Kusters, CJ, Ignatenko, T, Maes, R, van der Sluis, E, Selimis, G & Willems, FMJ 2017, Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios. in Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany., 8006840, Institute of Electrical and Electronics Engineers, Piscataway, pp. 1803-1807, 2017 IEEE International Symposium on Information Theory, ISIT 2017, Aachen, Germany, 25/06/17. https://doi.org/10.1109/ISIT.2017.8006840

Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios. / Kusters, C.J.; Ignatenko, T.; Maes, Roel et al.
Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany. Piscataway: Institute of Electrical and Electronics Engineers, 2017. p. 1803-1807 8006840.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios

AU - Kusters, C.J.

AU - Ignatenko, T.

AU - Maes, Roel

AU - van der Sluis, E.

AU - Selimis, G.

AU - Willems, F.M.J.

PY - 2017

Y1 - 2017

N2 - Fuzzy commitment and syndrome-based schemes are two well-known helper data schemes used to bind and generate, respectively, a secret key to/from SRAM-PUF observations. To allow the decoder to reconstruct this secret key from a new (verification) observation of an SRAM-PUF, an encoder has to generate so-called helper data. This helper data is a function of an SRAM-PUF enrollment observation and, in case of fuzzy commitment, the secret key. The helper data is assumed to be public and thus must leak no information about the secret key. It is known that both schemes can achieve secrecy capacity equal to the mutual information between enrollment and verification SRAM-PUF observations at zero secrecy leakage, when the observations are unbiased and a single enrollment is performed. We study here the situation when multiple SRAM-PUF observations are used to create multiple secret keys. First, we introduce a symmetry property for multiple SRAM-PUF observations. For such symmetric SRAM-PUFs, we show that, in both helper data schemes, the helper data corresponding to multiple SRAM-PUF observations provide no information about any of the secret keys.

AB - Fuzzy commitment and syndrome-based schemes are two well-known helper data schemes used to bind and generate, respectively, a secret key to/from SRAM-PUF observations. To allow the decoder to reconstruct this secret key from a new (verification) observation of an SRAM-PUF, an encoder has to generate so-called helper data. This helper data is a function of an SRAM-PUF enrollment observation and, in case of fuzzy commitment, the secret key. The helper data is assumed to be public and thus must leak no information about the secret key. It is known that both schemes can achieve secrecy capacity equal to the mutual information between enrollment and verification SRAM-PUF observations at zero secrecy leakage, when the observations are unbiased and a single enrollment is performed. We study here the situation when multiple SRAM-PUF observations are used to create multiple secret keys. First, we introduce a symmetry property for multiple SRAM-PUF observations. For such symmetric SRAM-PUFs, we show that, in both helper data schemes, the helper data corresponding to multiple SRAM-PUF observations provide no information about any of the secret keys.

UR - http://www.scopus.com/inward/record.url?scp=85034101704&partnerID=8YFLogxK

U2 - 10.1109/ISIT.2017.8006840

DO - 10.1109/ISIT.2017.8006840

M3 - Conference contribution

SN - 978-1-5090-4097-1

SP - 1803

EP - 1807

BT - Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany

PB - Institute of Electrical and Electronics Engineers

CY - Piscataway

T2 - 2017 IEEE International Symposium on Information Theory, ISIT 2017

Y2 - 25 June 2017 through 30 June 2017

ER -

Kusters CJ, Ignatenko T, Maes R, van der Sluis E, Selimis G, Willems FMJ. Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios. In Proceedings of the 2017 IEEE International Symposium on Information Theory (ISIT), 25-30 June 2017, Aachen, Germany. Piscataway: Institute of Electrical and Electronics Engineers. 2017. p. 1803-1807. 8006840 doi: 10.1109/ISIT.2017.8006840

Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios

Abstract

Conference

Access to Document

Other files and links

Fingerprint

Eurostars Pufs: Anchors of Trust in Resource constralned envirOnmenTs

Cite this

Security of helper data Schemes for SRAM-PUF in multiple enrollment scenarios

Abstract

Conference

Access to Document

Other files and links

Fingerprint

Projects

Eurostars Pufs: Anchors of Trust in Resource constralned envirOnmenTs

Cite this