Multi-factor authentication

Hamlet, Jason R; Pierson, Lyndon G

Title: Multi-factor authentication

Abstract

Detection and deterrence of spoofing of user authentication may be achieved by including a cryptographic fingerprint unit within a hardware device for authenticating a user of the hardware device. The cryptographic fingerprint unit includes an internal physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a PUF value. Combining logic is coupled to receive the PUF value, combines the PUF value with one or more other authentication factors to generate a multi-factor authentication value. A key generator is coupled to generate a private key and a public key based on the multi-factor authentication value while a decryptor is coupled to receive an authentication challenge posed to the hardware device and encrypted with the public key and coupled to output a response to the authentication challenge decrypted with the private key.

Inventors:: Hamlet, Jason R; Pierson, Lyndon G

Issue Date:: 2014-10-21

Research Org.:: Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1160234

Patent Number(s):: 8868923

Application Number:: 12/908,414

Assignee:: Sandia Corporation (Albuquerque, NM)

Patent Classifications (CPCs):: H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION

H - ELECTRICITY H03 - BASIC ELECTRONIC CIRCUITRY H03K - PULSE TECHNIQUE

Show more

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
H04L9/3231 - {Biological data, e.g. fingerprint, voice or retina
H04L29/06809 - {using biometrical features, e.g. fingerprint, retina-scan}
H04L63/0861 - {using biometrical features, e.g. fingerprint, retina-scan
H04L9/00 - {Cryptographic mechanisms or cryptographic} arrangements for secret or secure communication {
H04L9/3278 - {using physically unclonable functions [PUF]}

H - ELECTRICITY H03 - BASIC ELECTRONIC CIRCUITRY H03K - PULSE TECHNIQUE
H03K19/003 - Modifications for increasing the reliability {for protection}

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04N - PICTORIAL COMMUNICATION, e.g. TELEVISION
H04N1/442 - {using a biometric data reading device}

G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
G06F21/32 - using biometric data, e.g. fingerprints, iris scans or voiceprints

G - PHYSICS G05 - CONTROLLING G05B - CONTROL OR REGULATING SYSTEMS IN GENERAL
G05B19/00 - Programme-control systems

G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
G06F21/00 - Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04N - PICTORIAL COMMUNICATION, e.g. TELEVISION
H04N21/4415 - using biometric characteristics of the user, e.g. by voice recognition or fingerprint scanning {

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
H04L9/0866 - {involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics}

Show less

DOE Contract Number:: AC04-94AL85000

Resource Type:: Patent

Resource Relation:: Patent File Date: 2010 Oct 20

Country of Publication:: United States

Language:: English

Subject:: 97 MATHEMATICS AND COMPUTING

Citation Formats


                    Hamlet, Jason R, and Pierson, Lyndon G. Multi-factor authentication.  United States: N. p., 2014. 
        Web.

Copy to clipboard


                    Hamlet, Jason R, & Pierson, Lyndon G. Multi-factor authentication.  United States.

Copy to clipboard


                    Hamlet, Jason R, and Pierson, Lyndon G. Tue .  
        "Multi-factor authentication".  United States.  https://www.osti.gov/servlets/purl/1160234.

Copy to clipboard


                    
@article{osti_1160234,

  title        = {Multi-factor authentication},

  author       = {Hamlet, Jason R and Pierson, Lyndon G},

  abstractNote = {Detection and deterrence of spoofing of user authentication may be achieved by including a cryptographic fingerprint unit within a hardware device for authenticating a user of the hardware device. The cryptographic fingerprint unit includes an internal physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a PUF value. Combining logic is coupled to receive the PUF value, combines the PUF value with one or more other authentication factors to generate a multi-factor authentication value. A key generator is coupled to generate a private key and a public key based on the multi-factor authentication value while a decryptor is coupled to receive an authentication challenge posed to the hardware device and encrypted with the public key and coupled to output a response to the authentication challenge decrypted with the private key.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2014},

  month        = {10}

}

Copy to clipboard

Patent:

Save / Share:

Export Metadata

Save to My Library

Works referenced in this record:

Anti-counterfeiting, key distribution, and key storage in an ambient world via physical unclonable functions
journal, October 2008

Guajardo, Jorge; Škorić, Boris; Tuyls, Pim
Information Systems Frontiers, Vol. 11, Issue 1
https://doi.org/10.1007/s10796-008-9142-z

Remote patient monitoring: Information reliability challenges
conference, October 2009

Petkovic, Milan
TELSIKS 2009 - 2009 9th International Conference on Telecommunications in Modern Satellite, Cable, and Broadcasting Services, 2009 9th International Conference on Telecommunication in Modern Satellite, Cable, and Broadcasting Services
https://doi.org/10.1109/TELSKS.2009.5339520

Physical Unclonable Functions and Their Applications to Vehicle System Security
conference, April 2009

Asim, Muhammad; Guajardo, Jorge; Kumar, Sandeep S.
2009 IEEE 69th Vehicular Technology Conference Spring, VTC Spring 2009 - IEEE 69th Vehicular Technology Conference
https://doi.org/10.1109/VETECS.2009.5073800

Hardware intrinsic security from D flip-flops
conference, January 2010

van der Leest, Vincent; Schrijen, Geert-Jan; Handschuh, Helena
Proceedings of the fifth ACM workshop on Scalable trusted computing - STC '10
https://doi.org/10.1145/1867635.1867644

Estimating the Secrecy-Rate of Physical Unclonable Functions with the Context-Tree Weighting Method
conference, December 2006

Ignatenko, Tanya; Schrijen, Geert-jan; Skoric, Boris
2006 IEEE International Symposium on Information Theory
https://doi.org/10.1109/ISIT.2006.261765

Combining Crypto with Biometrics Effectively
journal, September 2006

Feng Hao, ; Anderson, R.; Daugman, J.
IEEE Transactions on Computers, Vol. 55, Issue 9
https://doi.org/10.1109/TC.2006.138

A Digital 1.6 pJ/bit Chip Identification Circuit Using Process Variations
journal, January 2008

Su, Ying; Holleman, Jeremy; Otis, Brian P.
IEEE Journal of Solid-State Circuits, Vol. 43, Issue 1
https://doi.org/10.1109/JSSC.2007.910961

A technique to build a secret key in integrated circuits for identification and authentication applications
conference, January 2004

Lee, J. W.; Gassend, B.
2004 Symposium on VLSI Circuits. Digest of Technical Papers (IEEE Cat. No.04CH37525)
https://doi.org/10.1109/VLSIC.2004.1346548

Energy Scalable Universal Hashing
journal, December 2005

Kaps, J.; Yuksel, K.; Sunar, B.
IEEE Transactions on Computers, Vol. 54, Issue 12
https://doi.org/10.1109/TC.2005.195

Extended abstract: The butterfly PUF protecting IP on every FPGA
conference, June 2008

Kumar, Sandeep S.; Guajardo, Jorge; Maes, Roel
2008 IEEE International Workshop on Hardware-Oriented Security and Trust (HOST)
https://doi.org/10.1109/HST.2008.4559053

Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
journal, January 2008

Dodis, Yevgeniy; Ostrovsky, Rafail; Reyzin, Leonid
SIAM Journal on Computing, Vol. 38, Issue 1
https://doi.org/10.1137/060651380

LFSR-based Hashing and Authentication
conference, January 1994

Krawczyk, Hugo; Desmedt, Yvo G.
Advances in Cryptology — CRYPTO ’94, p. 129-139
https://doi.org/10.1007/3-540-48658-5_15

Physical unclonable functions for device authentication and secret key generation
conference, January 2007

Suh, G. Edward; Devadas, Srinivas
Proceedings of the 44th annual conference on Design automation - DAC '07
https://doi.org/10.1145/1278480.1278484

Physical Unclonable Functions and Public-Key Crypto for FPGA IP Protection
conference, August 2007

Guajardo, Jorge; Kumar, Sandeep S.; Schrijen, Geert-Jan
2007 International Conference on Field Programmable Logic and Applications
https://doi.org/10.1109/FPL.2007.4380646

Protecting bus-based hardware IP by secret sharing
conference, January 2008

Roy, Jarrod A.; Koushanfar, Farinaz; Markov, Igor L.
Proceedings of the 45th annual conference on Design automation - DAC '08
https://doi.org/10.1145/1391469.1391684

Similar Records in DOE Patents and OSTI.GOV collections:

Multi-factor authentication using quantum communication

Patent Hughes, Richard John; Peterson, Charles Glen; Thrasher, James T.; ...

Multi-factor authentication using quantum communication ("QC") includes stages for enrollment and identification. For example, a user enrolls for multi-factor authentication that uses QC with a trusted authority. The trusted authority transmits device factor information associated with a user device (such as a hash function) and user factor information associated with the user (such as an encrypted version of a user password). The user device receives and stores the device factor information and user factor information. For multi-factor authentication that uses QC, the user device retrieves its stored device factor information and user factor information, then transmits the user factor informationmore » « less
Full Text Available
Streaming authentication and multi-level security for communications networks using quantum cryptography

Patent Hughes, Richard John; Nordholt, Jane Elizabeth; Peterson, Charles Glen; ...

Message authenticators for quantum-secured communications facilitate low-latency authentication with assurances of security. Low-latency message authenticators are especially valuable in infrastructure systems where security and latency constraints are difficult to satisfy with conventional non-quantum cryptography. For example, a message transmitter receives a message and derives an authentication tag for the message based at least in part on an authenticator that uses one or more quantum keys. The message transmitter outputs the message and its authentication tag. A message receiver receives a message and authentication tag for the message. The message receiver derives a comparison tag for the message based at leastmore » « less
Full Text Available
Interception and modification of network authentication packets with the purpose of allowing alternative authentication modes

Patent Kent, Alexander Dale [Los Alamos, NM]

Methods and systems in a data/computer network for authenticating identifying data transmitted from a client to a server through use of a gateway interface system which are communicately coupled to each other are disclosed. An authentication packet transmitted from a client to a server of the data network is intercepted by the interface, wherein the authentication packet is encrypted with a one-time password for transmission from the client to the server. The one-time password associated with the authentication packet can be verified utilizing a one-time password token system. The authentication packet can then be modified for acceptance by the server,more » « less
Full Text Available
Systems and methods for authentication and key agreement in a smart grid

Patent Akkaya, Kemal; Cebe, Mumin

Systems and methods for authentication and key agreement are provided and can utilize a scheme that uses dynamic key generation to achieve replay-attack resistance in zero round trip time (0-RTT). The hash-chain concept can be integrated with the Diffie-Hellman (DH) key exchange scheme. With this scheme, a device can securely determine the new shared key immediately (i.e., in 0-RTT) and start using it.
Full Text Available
Methods and systems for authenticating identity

Patent Choi, Sung Nam; Zage, David John; Le, Tam Dang; ...

Systems and methods are disclosed that provide for secure communications between a user device and an authentication system. The systems and methods create a dynamic identification for the device that is stored in both the device and authentication system.
Full Text Available

Similar Records

Title: Multi-factor authentication

Abstract

Citation Formats

Anti-counterfeiting, key distribution, and key storage in an ambient world via physical unclonable functions journal, October 2008

Remote patient monitoring: Information reliability challenges conference, October 2009

Physical Unclonable Functions and Their Applications to Vehicle System Security conference, April 2009

Hardware intrinsic security from D flip-flops conference, January 2010

Estimating the Secrecy-Rate of Physical Unclonable Functions with the Context-Tree Weighting Method conference, December 2006

Combining Crypto with Biometrics Effectively journal, September 2006

A Digital 1.6 pJ/bit Chip Identification Circuit Using Process Variations journal, January 2008

A technique to build a secret key in integrated circuits for identification and authentication applications conference, January 2004

Energy Scalable Universal Hashing journal, December 2005

Extended abstract: The butterfly PUF protecting IP on every FPGA conference, June 2008

Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data journal, January 2008

LFSR-based Hashing and Authentication conference, January 1994

Physical unclonable functions for device authentication and secret key generation conference, January 2007

Physical Unclonable Functions and Public-Key Crypto for FPGA IP Protection conference, August 2007

Protecting bus-based hardware IP by secret sharing conference, January 2008

Anti-counterfeiting, key distribution, and key storage in an ambient world via physical unclonable functions
journal, October 2008

Remote patient monitoring: Information reliability challenges
conference, October 2009

Physical Unclonable Functions and Their Applications to Vehicle System Security
conference, April 2009

Hardware intrinsic security from D flip-flops
conference, January 2010

Estimating the Secrecy-Rate of Physical Unclonable Functions with the Context-Tree Weighting Method
conference, December 2006

Combining Crypto with Biometrics Effectively
journal, September 2006

A Digital 1.6 pJ/bit Chip Identification Circuit Using Process Variations
journal, January 2008

A technique to build a secret key in integrated circuits for identification and authentication applications
conference, January 2004

Energy Scalable Universal Hashing
journal, December 2005

Extended abstract: The butterfly PUF protecting IP on every FPGA
conference, June 2008

Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
journal, January 2008

LFSR-based Hashing and Authentication
conference, January 1994

Physical unclonable functions for device authentication and secret key generation
conference, January 2007

Physical Unclonable Functions and Public-Key Crypto for FPGA IP Protection
conference, August 2007

Protecting bus-based hardware IP by secret sharing
conference, January 2008