DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Hardware device binding and mutual authentication

Abstract

Detection and deterrence of device tampering and subversion by substitution may be achieved by including a cryptographic unit within a computing device for binding multiple hardware devices and mutually authenticating the devices. The cryptographic unit includes a physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a binding PUF value. The cryptographic unit uses the binding PUF value during an enrollment phase and subsequent authentication phases. During a subsequent authentication phase, the cryptographic unit uses the binding PUF values of the multiple hardware devices to generate a challenge to send to the other device, and to verify a challenge received from the other device to mutually authenticate the hardware devices.

Inventors:
;
Issue Date:
Research Org.:
Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1126879
Patent Number(s):
8667265
Application Number:
12/908,131
Assignee:
Sandia Corporation (Albuquerque, NM)
Patent Classifications (CPCs):
G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
DOE Contract Number:  
AC04-94AL85000
Resource Type:
Patent
Resource Relation:
Patent File Date: 2010 Oct 20
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING

Citation Formats

Hamlet, Jason R, and Pierson, Lyndon G. Hardware device binding and mutual authentication. United States: N. p., 2014. Web.
Hamlet, Jason R, & Pierson, Lyndon G. Hardware device binding and mutual authentication. United States.
Hamlet, Jason R, and Pierson, Lyndon G. Tue . "Hardware device binding and mutual authentication". United States. https://www.osti.gov/servlets/purl/1126879.
@article{osti_1126879,
title = {Hardware device binding and mutual authentication},
author = {Hamlet, Jason R and Pierson, Lyndon G},
abstractNote = {Detection and deterrence of device tampering and subversion by substitution may be achieved by including a cryptographic unit within a computing device for binding multiple hardware devices and mutually authenticating the devices. The cryptographic unit includes a physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a binding PUF value. The cryptographic unit uses the binding PUF value during an enrollment phase and subsequent authentication phases. During a subsequent authentication phase, the cryptographic unit uses the binding PUF values of the multiple hardware devices to generate a challenge to send to the other device, and to verify a challenge received from the other device to mutually authenticate the hardware devices.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2014},
month = {3}
}

Works referenced in this record:

Physical unclonable functions for device authentication and secret key generation
conference, January 2007


AmIware: Hardware Technology Drivers of Ambient Intelligence
book, January 2006


Data processing systems and methods with enhanced bios functionality
patent, May 2008


Data Protection and Cryptographic Functions Using a Device-Specific Value
patent-application, November 2006


Identification of Devices using Physically Unclonable Functions
patent-application, September 2011


Method and system for authentication of a physical object
patent-application, February 2007


Integrated Circuit That Uses a Dynamic Characteristic of the Circuit
patent-application, October 2006


Reliable generation of a device-specific value
patent, March 2010


Protecting bus-based hardware IP by secret sharing
conference, January 2008


Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
book, January 2004


Cryptographic Binding of Authentication Schemes
patent-application, May 2009


Reliable Generation of a Device-Specific Value
patent-application, November 2006


Sharing a secret by using random function
patent-application, March 2008


Securely field configurable device
patent-application, September 2006


A technique to build a secret key in integrated circuits for identification and authentication applications
conference, January 2004


Physical Unclonable Functions and Public-Key Crypto for FPGA IP Protection
conference, August 2007


A Digital 1.6 pJ/bit Chip Identification Circuit Using Process Variations
journal, January 2008


Advances in Cryptology
conference, August 1994


Energy Scalable Universal Hashing
journal, December 2005


Volatile device keys and applications thereof
patent-application, September 2006


Authentication of integrated circuits
patent-application, October 2003


System and Method of Reliable Foward Secret Key Sharing with Physical Random Functions
patent-application, February 2008


Extended abstract: The butterfly PUF protecting IP on every FPGA
conference, June 2008


Authentication with Physical Unclonable Functions
patent-application, March 2009


Method for protecting information carrier comprising an integrated circuit
patent-application, February 2007


Controlling Access to Device-Specific Information
patent-application, August 2007


Volatile Device Keys And Applications Thereof
patent-application, October 2009


    Works referencing / citing this record:

    Resilient device authentication system
    patent, February 2016


    Electronic component classification
    patent, September 2017


    Resilient device authentication system
    patent, October 2015


    Secure provisioning of secret keys during integrated circuit manufacturing
    patent, August 2017


    Systems and methods for maintaining integrity and secrecy in untrusted computing platforms
    patent, June 2016


    Remote recognition of an association between remote devices
    patent, September 2017


    System and device binding metadata with hardware intrinsic properties
    patent, June 2017


    Portable system and method for remotely accessing data
    patent, September 2014


    Authentication system
    patent, June 2018