Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response
Field programmable gate array (FPGA) is a potential hotbed for malicious and counterfeit hardware infiltration. Arbiter-based physical unclonable function (A-PUF) has been widely regarded as a suitable lightweight security primitive for FPGA bitstream encryption and device authentication. Unfortunat...
Saved in:
| Main Authors: | , , |
|---|---|
| Other Authors: | |
| Format: | Article |
| Language: | English |
| Published: |
2020
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/143997 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-143997 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-1439972020-10-07T02:54:37Z Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response Zalivaka, Siarhei S. Ivaniuk, Alexander A. Chang, Chip Hong School of Electrical and Electronic Engineering Engineering::Electrical and electronic engineering Arbiter PUF Reliability Enhancement Field programmable gate array (FPGA) is a potential hotbed for malicious and counterfeit hardware infiltration. Arbiter-based physical unclonable function (A-PUF) has been widely regarded as a suitable lightweight security primitive for FPGA bitstream encryption and device authentication. Unfortunately, the metastability of flip-flop gives rise to poor A-PUF reliability in FPGA implementation. Its linear additive path delays are also vulnerable to modeling attacks. Most reliability enhancement techniques tend to increase the response predictability and ease machine learning attacks. This paper presents a robust device authentication method based on the FPGA implementation of a reliability enhanced A-PUF with trinary digit (trit) quadruple responses. A two flip-flop arbiter is used to produce a trit for metastability detection. By considering the ordered responses to all four combinations of first and last challenge bits, each quadruple response can be compressed into a quadbit that represents one of the five classes of trit quadruple response with greater reproducibility. This challenge-response quadruple classification not only greatly reduces the burden of error correction at the device but also enables a precise A-PUF model to be built at the server without having to store the complete challenge-response pair (CRP) set for authentication. Besides, the real challenge to the A-PUF is generated internally by a lossy, nonlinear, and irreversible maximum length signature generator at both the server and device sides to prevent the naked CRP from being machine learned by the attacker. The A-PUF with short repetition code of length five has been tested to achieve a reliability of 1.0 over the full operating temperature range of the target FPGA board with lower hardware resource utilization than other modeling attack resilient strong PUFs. The proposed authentication protocol has also been experimentally evaluated to be practically secure against various machine learning attacks including evolutionary strategy covariance matrix adaptation. Ministry of Education (MOE) Accepted version This work was supported by the Singapore Ministry of Education Academic Research Fund (AcRF) Tier II under Grant MOE 2015-T2-2-013. The associate editor coordinating the review of this manuscript and approving it for publication was Dr. Eduard A. Jorswieck. (Corresponding authors: Siarhei S. Zalivaka; Chip-Hong Chang.) 2020-10-07T02:54:37Z 2020-10-07T02:54:37Z 2018 Journal Article Zalivaka, S. S., Ivaniuk, A. A., & Chang, C. H. (2019). Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response. IEEE Transactions on Information Forensics and Security, 14(4), 1109-1123. doi:10.1109/tifs.2018.2870835 1556-6013 https://hdl.handle.net/10356/143997 10.1109/TIFS.2018.2870835 4 14 1109 1123 en IEEE Transactions on Information Forensics and Security © 2018 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. The published version is available at: https://doi.org/10.1109/TIFS.2018.2870835. application/pdf |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| country |
Singapore |
| collection |
DR-NTU |
| language |
English |
| topic |
Engineering::Electrical and electronic engineering Arbiter PUF Reliability Enhancement |
| spellingShingle |
Engineering::Electrical and electronic engineering Arbiter PUF Reliability Enhancement Zalivaka, Siarhei S. Ivaniuk, Alexander A. Chang, Chip Hong Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response |
| description |
Field programmable gate array (FPGA) is a potential hotbed for malicious and counterfeit hardware infiltration. Arbiter-based physical unclonable function (A-PUF) has been widely regarded as a suitable lightweight security primitive for FPGA bitstream encryption and device authentication. Unfortunately, the metastability of flip-flop gives rise to poor A-PUF reliability in FPGA implementation. Its linear additive path delays are also vulnerable to modeling attacks. Most reliability enhancement techniques tend to increase the response predictability and ease machine learning attacks. This paper presents a robust device authentication method based on the FPGA implementation of a reliability enhanced A-PUF with trinary digit (trit) quadruple responses. A two flip-flop arbiter is used to produce a trit for metastability detection. By considering the ordered responses to all four combinations of first and last challenge bits, each quadruple response can be compressed into a quadbit that represents one of the five classes of trit quadruple response with greater reproducibility. This challenge-response quadruple classification not only greatly reduces the burden of error correction at the device but also enables a precise A-PUF model to be built at the server without having to store the complete challenge-response pair (CRP) set for authentication. Besides, the real challenge to the A-PUF is generated internally by a lossy, nonlinear, and irreversible maximum length signature generator at both the server and device sides to prevent the naked CRP from being machine learned by the attacker. The A-PUF with short repetition code of length five has been tested to achieve a reliability of 1.0 over the full operating temperature range of the target FPGA board with lower hardware resource utilization than other modeling attack resilient strong PUFs. The proposed authentication protocol has also been experimentally evaluated to be practically secure against various machine learning attacks including evolutionary strategy covariance matrix adaptation. |
| author2 |
School of Electrical and Electronic Engineering |
| author_facet |
School of Electrical and Electronic Engineering Zalivaka, Siarhei S. Ivaniuk, Alexander A. Chang, Chip Hong |
| format |
Article |
| author |
Zalivaka, Siarhei S. Ivaniuk, Alexander A. Chang, Chip Hong |
| author_sort |
Zalivaka, Siarhei S. |
| title |
Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response |
| title_short |
Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response |
| title_full |
Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response |
| title_fullStr |
Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response |
| title_full_unstemmed |
Reliable and modeling attack resistant authentication of Arbiter PUF in FPGA implementation with trinary quadruple response |
| title_sort |
reliable and modeling attack resistant authentication of arbiter puf in fpga implementation with trinary quadruple response |
| publishDate |
2020 |
| url |
https://hdl.handle.net/10356/143997 |
| _version_ |
1681057053109387264 |