DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Multi-factor authentication

Abstract

Detection and deterrence of spoofing of user authentication may be achieved by including a cryptographic fingerprint unit within a hardware device for authenticating a user of the hardware device. The cryptographic fingerprint unit includes an internal physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a PUF value. Combining logic is coupled to receive the PUF value, combines the PUF value with one or more other authentication factors to generate a multi-factor authentication value. A key generator is coupled to generate a private key and a public key based on the multi-factor authentication value while a decryptor is coupled to receive an authentication challenge posed to the hardware device and encrypted with the public key and coupled to output a response to the authentication challenge decrypted with the private key.

Inventors:
;
Issue Date:
Research Org.:
Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1160234
Patent Number(s):
8868923
Application Number:
12/908,414
Assignee:
Sandia Corporation (Albuquerque, NM)
Patent Classifications (CPCs):
G - PHYSICS G05 - CONTROLLING G05B - CONTROL OR REGULATING SYSTEMS IN GENERAL
G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
DOE Contract Number:  
AC04-94AL85000
Resource Type:
Patent
Resource Relation:
Patent File Date: 2010 Oct 20
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING

Citation Formats

Hamlet, Jason R, and Pierson, Lyndon G. Multi-factor authentication. United States: N. p., 2014. Web.
Hamlet, Jason R, & Pierson, Lyndon G. Multi-factor authentication. United States.
Hamlet, Jason R, and Pierson, Lyndon G. Tue . "Multi-factor authentication". United States. https://www.osti.gov/servlets/purl/1160234.
@article{osti_1160234,
title = {Multi-factor authentication},
author = {Hamlet, Jason R and Pierson, Lyndon G},
abstractNote = {Detection and deterrence of spoofing of user authentication may be achieved by including a cryptographic fingerprint unit within a hardware device for authenticating a user of the hardware device. The cryptographic fingerprint unit includes an internal physically unclonable function ("PUF") circuit disposed in or on the hardware device, which generates a PUF value. Combining logic is coupled to receive the PUF value, combines the PUF value with one or more other authentication factors to generate a multi-factor authentication value. A key generator is coupled to generate a private key and a public key based on the multi-factor authentication value while a decryptor is coupled to receive an authentication challenge posed to the hardware device and encrypted with the public key and coupled to output a response to the authentication challenge decrypted with the private key.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2014},
month = {10}
}

Works referenced in this record:

Identification and verification using complex, three-dimensional structural features
patent, June 2003


Data processing systems and methods with enhanced bios functionality
patent, May 2008


Reliable generation of a device-specific value
patent, March 2010


Authentication of integrated circuits
patent-application, October 2003


Securely field configurable device
patent-application, September 2006


Volatile device keys and applications thereof
patent-application, September 2006


Integrated Circuit That Uses a Dynamic Characteristic of the Circuit
patent-application, October 2006


Data Protection and Cryptographic Functions Using a Device-Specific Value
patent-application, November 2006


Reliable Generation of a Device-Specific Value
patent-application, November 2006


Method for protecting information carrier comprising an integrated circuit
patent-application, February 2007


Method and system for authentication of a physical object
patent-application, February 2007


Information carrier comprising a non-clonable optical identifier
patent-application, June 2007


Controlling Access to Device-Specific Information
patent-application, August 2007


System and Method of Reliable Foward Secret Key Sharing with Physical Random Functions
patent-application, February 2008


Sharing a secret by using random function
patent-application, March 2008


Method, Apparatus, Device, System, Program, for Calibrating
patent-application, June 2008


Integrated Physical Unclonable Function (Puf) with Combined Sensor and Display
patent-application, September 2008


Authentication with Physical Unclonable Functions
patent-application, March 2009


Volatile Device Keys And Applications Thereof
patent-application, October 2009


Temperature-Profiled Device Fingerprint Generation and Authentication from Power-Up States of Static Cells
patent-application, December 2009


Information Security Apparatus
patent-application, February 2010


Fingerprint Sensor Device and System with Verification Token and Methods of Using
patent-application, April 2010


Non-Network RFID Authentication
patent-application, May 2010


Device and Method for Providing Authentication
patent-application, July 2010


Securely Field Configurable Device
patent-application, October 2010


Method and System for Electronically Securing an Electronic Biometric Device Using Physically Unclonable Functions
patent-application, January 2011


Lightweight Secure Physically Unclonable Functions
patent-application, March 2011


Combination of Values from a Pseudo-Random Source
patent-application, March 2011


Authenticating A Device and A User
patent-application, August 2011


Device and Method for Obtaining a Cryptographic Key
patent-application, February 2013


Robust Authentication Using Physically Unclonable Functions
book, January 2009


Anti-counterfeiting, key distribution, and key storage in an ambient world via physical unclonable functions
journal, October 2008


Remote patient monitoring: Information reliability challenges
conference, October 2009

  • Petkovic, Milan
  • TELSIKS 2009 - 2009 9th International Conference on Telecommunications in Modern Satellite, Cable, and Broadcasting Services, 2009 9th International Conference on Telecommunication in Modern Satellite, Cable, and Broadcasting Services
  • https://doi.org/10.1109/TELSKS.2009.5339520

Physical Unclonable Functions and Their Applications to Vehicle System Security
conference, April 2009


Hardware intrinsic security from D flip-flops
conference, January 2010


Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
book, January 2004


Strong Authentication with Physical Unclonable Functions
book, January 2007


Estimating the Secrecy-Rate of Physical Unclonable Functions with the Context-Tree Weighting Method
conference, December 2006


Combining Crypto with Biometrics Effectively
journal, September 2006


A Digital 1.6 pJ/bit Chip Identification Circuit Using Process Variations
journal, January 2008


A technique to build a secret key in integrated circuits for identification and authentication applications
conference, January 2004


Energy Scalable Universal Hashing
journal, December 2005


Extended abstract: The butterfly PUF protecting IP on every FPGA
conference, June 2008


Fuzzy Extractors: How to Generate Strong Keys from Biometrics and Other Noisy Data
journal, January 2008


LFSR-based Hashing and Authentication
conference, January 1994


Physical unclonable functions for device authentication and secret key generation
conference, January 2007


Physical Unclonable Functions and Public-Key Crypto for FPGA IP Protection
conference, August 2007


Protecting bus-based hardware IP by secret sharing
conference, January 2008


    Works referencing / citing this record:

    Access control using impersonization
    patent, July 2017


    Authentication
    patent, July 2017


    System and device binding metadata with hardware intrinsic properties
    patent, June 2017


    System and method for cryptographic key identification
    patent, May 2017


    Protection from data security threats
    patent, May 2017


    Method of authenticating a device
    patent, January 2017


    Complete forward access sessions
    patent, December 2016


    Access control using impersonization
    patent, August 2016


    Multiple authority data security and access
    patent, August 2016


    Distributed passcode verification system
    patent, June 2016


    Passcode verification using hardware secrets
    patent, June 2016


    Systems and methods for maintaining integrity and secrecy in untrusted computing platforms
    patent, June 2016


    Content-based association of device to user
    patent, May 2016


    Data security using request-supplied keys
    patent, April 2016


    Source identification for unauthorized copies of content
    patent, April 2016


    Tiered access to on chip features
    patent, March 2016


    Hardware secret usage limits
    patent, March 2016


    Adaptive client-aware session security
    patent, February 2016


    Adaptive client-aware session security as a service
    patent, February 2016


    Decentralized verification in a distributed system
    patent, February 2016


    Mutual authentication with symmetric secrets and signatures
    patent, February 2016


    Resource locators with keys
    patent, January 2016


    Key generation for hierarchical data access
    patent, December 2015


    Techniques for client constructed sessions
    patent, December 2015


    Key derivation techniques
    patent, November 2015


    Parameter based key derivation
    patent, November 2015