skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Multi-factor authentication

Abstract

Detection and deterrence of spoofing of user authentication may be achieved by including a cryptographic fingerprint unit within a hardware device for authenticating a user of the hardware device. The cryptographic fingerprint unit includes an internal physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a PUF value. Combining logic is coupled to receive the PUF value, combines the PUF value with one or more other authentication factors to generate a multi-factor authentication value. A key generator is coupled to generate a private key and a public key based on the multi-factor authentication value while a decryptor is coupled to receive an authentication challenge posed to the hardware device and encrypted with the public key and coupled to output a response to the authentication challenge decrypted with the private key.

Inventors:
;
Publication Date:
Research Org.:
Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1160234
Patent Number(s):
8,868,923
Application Number:
12/908,414
Assignee:
Sandia Corporation (Albuquerque, NM)
DOE Contract Number:  
AC04-94AL85000
Resource Type:
Patent
Resource Relation:
Patent File Date: 2010 Oct 20
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING

Citation Formats

Hamlet, Jason R, and Pierson, Lyndon G. Multi-factor authentication. United States: N. p., 2014. Web.
Hamlet, Jason R, & Pierson, Lyndon G. Multi-factor authentication. United States.
Hamlet, Jason R, and Pierson, Lyndon G. 2014. "Multi-factor authentication". United States. https://www.osti.gov/servlets/purl/1160234.
@article{osti_1160234,
title = {Multi-factor authentication},
author = {Hamlet, Jason R and Pierson, Lyndon G},
abstractNote = {Detection and deterrence of spoofing of user authentication may be achieved by including a cryptographic fingerprint unit within a hardware device for authenticating a user of the hardware device. The cryptographic fingerprint unit includes an internal physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a PUF value. Combining logic is coupled to receive the PUF value, combines the PUF value with one or more other authentication factors to generate a multi-factor authentication value. A key generator is coupled to generate a private key and a public key based on the multi-factor authentication value while a decryptor is coupled to receive an authentication challenge posed to the hardware device and encrypted with the public key and coupled to output a response to the authentication challenge decrypted with the private key.},
doi = {},
url = {https://www.osti.gov/biblio/1160234}, journal = {},
number = ,
volume = ,
place = {United States},
year = {Tue Oct 21 00:00:00 EDT 2014},
month = {Tue Oct 21 00:00:00 EDT 2014}
}

Works referenced in this record:

Authentication of integrated circuits
patent-application, October 2003


Securely field configurable device
patent-application, September 2006


Volatile device keys and applications thereof
patent-application, September 2006


Integrated Circuit That Uses a Dynamic Characteristic of the Circuit
patent-application, October 2006


Data Protection and Cryptographic Functions Using a Device-Specific Value
patent-application, November 2006


Reliable Generation of a Device-Specific Value
patent-application, November 2006


Method for protecting information carrier comprising an integrated circuit
patent-application, February 2007


Method and system for authentication of a physical object
patent-application, February 2007


Information carrier comprising a non-clonable optical identifier
patent-application, June 2007


Controlling Access to Device-Specific Information
patent-application, August 2007


Sharing a secret by using random function
patent-application, March 2008


Method, Apparatus, Device, System, Program, for Calibrating
patent-application, June 2008


Integrated Physical Unclonable Function (Puf) with Combined Sensor and Display
patent-application, September 2008


Authentication with Physical Unclonable Functions
patent-application, March 2009


Volatile Device Keys And Applications Thereof
patent-application, October 2009


Temperature-Profiled Device Fingerprint Generation and Authentication from Power-Up States of Static Cells
patent-application, December 2009


Information Security Apparatus
patent-application, February 2010


Non-Network RFID Authentication
patent-application, May 2010


Device and Method for Providing Authentication
patent-application, July 2010


Securely Field Configurable Device
patent-application, October 2010


Lightweight Secure Physically Unclonable Functions
patent-application, March 2011


Authenticating A Device and A User
patent-application, August 2011


Device and Method for Obtaining a Cryptographic Key
patent-application, February 2013


Anti-counterfeiting, key distribution, and key storage in an ambient world via physical unclonable functions
journal, October 2008


Remote patient monitoring: Information reliability challenges
conference, October 2009

  • Petkovic, Milan
  • TELSIKS 2009 - 2009 9th International Conference on Telecommunications in Modern Satellite, Cable, and Broadcasting Services, 2009 9th International Conference on Telecommunication in Modern Satellite, Cable, and Broadcasting Services
  • https://doi.org/10.1109/TELSKS.2009.5339520

Physical Unclonable Functions and Their Applications to Vehicle System Security
conference, April 2009


Hardware intrinsic security from D flip-flops
conference, January 2010


Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
book, January 2004


Estimating the Secrecy-Rate of Physical Unclonable Functions with the Context-Tree Weighting Method
conference, December 2006


Combining Crypto with Biometrics Effectively
journal, September 2006


A Digital 1.6 pJ/bit Chip Identification Circuit Using Process Variations
journal, January 2008


A technique to build a secret key in integrated circuits for identification and authentication applications
conference, January 2004


Energy Scalable Universal Hashing
journal, December 2005


Extended abstract: The butterfly PUF protecting IP on every FPGA
conference, June 2008


Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
journal, January 2008


LFSR-based Hashing and Authentication
conference, January 1994


Physical unclonable functions for device authentication and secret key generation
conference, January 2007


Physical Unclonable Functions and Public-Key Crypto for FPGA IP Protection
conference, August 2007


Protecting bus-based hardware IP by secret sharing
conference, January 2008


Works referencing / citing this record:

Access control using impersonization
patent, July 2017


Authentication
patent, July 2017


System and method for cryptographic key identification
patent, May 2017


Protection from data security threats
patent, May 2017


Method of authenticating a device
patent, January 2017


Complete forward access sessions
patent, December 2016


Access control using impersonization
patent, August 2016


Multiple authority data security and access
patent, August 2016


Distributed passcode verification system
patent, June 2016


Passcode verification using hardware secrets
patent, June 2016


Systems and methods for maintaining integrity and secrecy in untrusted computing platforms
patent, June 2016


Content-based association of device to user
patent, May 2016


Data security using request-supplied keys
patent, April 2016


Source identification for unauthorized copies of content
patent, April 2016


Tiered access to on chip features
patent, March 2016


Hardware secret usage limits
patent, March 2016


Adaptive client-aware session security
patent, February 2016


Adaptive client-aware session security as a service
patent, February 2016


Decentralized verification in a distributed system
patent, February 2016


Mutual authentication with symmetric secrets and signatures
patent, February 2016


Resource locators with keys
patent, January 2016


Key generation for hierarchical data access
patent, December 2015


Techniques for client constructed sessions
patent, December 2015


Key derivation techniques
patent, November 2015


Parameter based key derivation
patent, November 2015