PUFSec: Protecting physical unclonable functions using hardware isolation-based system security techniques

Mengmei Ye, Mehrdad Zaker Shahrak, Sheng Wei

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

This paper aims to address the security challenges on physical unclonable functions (PUFs) raised by modeling attacks and denial of service (DoS) attacks. We develop a hardware isolation-based secure architecture extension, namely PUFSec, to protect the target PUF from security compromises without modifying the internal PUF design. PUFSec achieves the security protection by physically isolating the PUF hardware and data from the attack surfaces accessible by the adversaries. Furthermore, we deploy strictly enforced security policies within PUFSec, which authenticate the incoming PUF challenges and prevent attackers from collecting sufficient PUF responses to issue modeling attacks or interfering with the PUF workflow to launch DoS attacks. We implement our PUFSec framework on a Xilinx SoC equipped with ARM processor. Our experimental results on the real hardware prove the enhanced security and the low performance and power overhead brought by PUFSec.

Original languageEnglish (US)
Title of host publicationProceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages7-12
Number of pages6
ISBN (Electronic)9781538614211
DOIs
StatePublished - May 3 2018
Event2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017 - Beijing, China
Duration: Oct 19 2017Oct 20 2017

Publication series

NameProceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017
Volume2018-May

Other

Other2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017
CountryChina
CityBeijing
Period10/19/1710/20/17

Fingerprint

Security systems
Hardware
ARM processors
Hardware security

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Hardware and Architecture
  • Safety, Risk, Reliability and Quality

Cite this

Ye, M., Shahrak, M. Z., & Wei, S. (2018). PUFSec: Protecting physical unclonable functions using hardware isolation-based system security techniques. In Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017 (pp. 7-12). (Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017; Vol. 2018-May). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/AsianHOST.2017.8353987
Ye, Mengmei ; Shahrak, Mehrdad Zaker ; Wei, Sheng. / PUFSec : Protecting physical unclonable functions using hardware isolation-based system security techniques. Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 7-12 (Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017).
@inproceedings{056304d0851e4ccf9d6f2d0ea8d0f3e1,
title = "PUFSec: Protecting physical unclonable functions using hardware isolation-based system security techniques",
abstract = "This paper aims to address the security challenges on physical unclonable functions (PUFs) raised by modeling attacks and denial of service (DoS) attacks. We develop a hardware isolation-based secure architecture extension, namely PUFSec, to protect the target PUF from security compromises without modifying the internal PUF design. PUFSec achieves the security protection by physically isolating the PUF hardware and data from the attack surfaces accessible by the adversaries. Furthermore, we deploy strictly enforced security policies within PUFSec, which authenticate the incoming PUF challenges and prevent attackers from collecting sufficient PUF responses to issue modeling attacks or interfering with the PUF workflow to launch DoS attacks. We implement our PUFSec framework on a Xilinx SoC equipped with ARM processor. Our experimental results on the real hardware prove the enhanced security and the low performance and power overhead brought by PUFSec.",
author = "Mengmei Ye and Shahrak, {Mehrdad Zaker} and Sheng Wei",
year = "2018",
month = "5",
day = "3",
doi = "10.1109/AsianHOST.2017.8353987",
language = "English (US)",
series = "Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "7--12",
booktitle = "Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017",
address = "United States",

}

Ye, M, Shahrak, MZ & Wei, S 2018, PUFSec: Protecting physical unclonable functions using hardware isolation-based system security techniques. in Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017. Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017, vol. 2018-May, Institute of Electrical and Electronics Engineers Inc., pp. 7-12, 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017, Beijing, China, 10/19/17. https://doi.org/10.1109/AsianHOST.2017.8353987

PUFSec : Protecting physical unclonable functions using hardware isolation-based system security techniques. / Ye, Mengmei; Shahrak, Mehrdad Zaker; Wei, Sheng.

Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017. Institute of Electrical and Electronics Engineers Inc., 2018. p. 7-12 (Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017; Vol. 2018-May).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - PUFSec

T2 - Protecting physical unclonable functions using hardware isolation-based system security techniques

AU - Ye, Mengmei

AU - Shahrak, Mehrdad Zaker

AU - Wei, Sheng

PY - 2018/5/3

Y1 - 2018/5/3

N2 - This paper aims to address the security challenges on physical unclonable functions (PUFs) raised by modeling attacks and denial of service (DoS) attacks. We develop a hardware isolation-based secure architecture extension, namely PUFSec, to protect the target PUF from security compromises without modifying the internal PUF design. PUFSec achieves the security protection by physically isolating the PUF hardware and data from the attack surfaces accessible by the adversaries. Furthermore, we deploy strictly enforced security policies within PUFSec, which authenticate the incoming PUF challenges and prevent attackers from collecting sufficient PUF responses to issue modeling attacks or interfering with the PUF workflow to launch DoS attacks. We implement our PUFSec framework on a Xilinx SoC equipped with ARM processor. Our experimental results on the real hardware prove the enhanced security and the low performance and power overhead brought by PUFSec.

AB - This paper aims to address the security challenges on physical unclonable functions (PUFs) raised by modeling attacks and denial of service (DoS) attacks. We develop a hardware isolation-based secure architecture extension, namely PUFSec, to protect the target PUF from security compromises without modifying the internal PUF design. PUFSec achieves the security protection by physically isolating the PUF hardware and data from the attack surfaces accessible by the adversaries. Furthermore, we deploy strictly enforced security policies within PUFSec, which authenticate the incoming PUF challenges and prevent attackers from collecting sufficient PUF responses to issue modeling attacks or interfering with the PUF workflow to launch DoS attacks. We implement our PUFSec framework on a Xilinx SoC equipped with ARM processor. Our experimental results on the real hardware prove the enhanced security and the low performance and power overhead brought by PUFSec.

UR - http://www.scopus.com/inward/record.url?scp=85050920247&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85050920247&partnerID=8YFLogxK

U2 - 10.1109/AsianHOST.2017.8353987

DO - 10.1109/AsianHOST.2017.8353987

M3 - Conference contribution

AN - SCOPUS:85050920247

T3 - Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017

SP - 7

EP - 12

BT - Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017

PB - Institute of Electrical and Electronics Engineers Inc.

ER -

Ye M, Shahrak MZ, Wei S. PUFSec: Protecting physical unclonable functions using hardware isolation-based system security techniques. In Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017. Institute of Electrical and Electronics Engineers Inc. 2018. p. 7-12. (Proceedings of the 2017 Asian Hardware Oriented Security and Trust Symposium, AsianHOST 2017). https://doi.org/10.1109/AsianHOST.2017.8353987