Paper Info
Title
Secure and Private, yet Lightweight, Authentication for the IoT via PUF and CBKA.
Abstract
The Internet of Things IoT is boon and bane. It offers great potential for new business models and ecosystems, but raises major security and privacy concerns. Because many IoT systems collect, process, and store personal data, a secure and privacy-preserving identity management is of utmost significance. Yet, strong resource limitations of IoT devices render resource-hungry public-key cryptography infeasible. Additionally, the security model of IoT enforces solutions to work under memory-leakage attacks. Existing constructions address either the privacy issue or the lightweightness, but not both. Our work contributes towards bridging this gap by combining physically unclonable functions PUFs and channel-based key agreement CBKA: i We show a flaw in a PUF-based authentication protocol, when outsider chosen perturbation security cannot be guaranteed. ii We present a solution to this flaw by introducing CBKA with an improved definition. iii We propose a provably secure and lightweight authentication protocol by combining PUFs and CBKA.
Year
DOI
Venue
2016
10.1007/978-3-319-53177-9_2
ICISC
Keywords
Field
DocType
Cryptographic protocol, Physically unclonable function, Channel-based key agreement
Authentication,Cryptographic protocol,Cryptography,Computer security,Computer science,Computer network,Identity management,Authentication protocol,Business model,Physical unclonable function,Computer security model
Conference
Volume
ISSN
Citations 
10157
0302-9743
0
PageRank 
References 
Authors
0.34
18
5
Name
Order
Citations
PageRank
Huth, Christopher1254.19
Aydin Aysu212415.59
Jorge Guajardo3124.57
Paul Duplys493.07
Tim Güneysu592477.37