Poster: practical embedded remote attestation using physically unclonable functions

We present the design and implementation of a lightweight remote attestation scheme for embedded devices that combines software attestation with Physically Unclonable Functions (PUFs). In contrast to standard software attestation, our scheme (i) is secure against collusion attacks to forge the attestation checksum, (ii) allows for the authentication and attestation of remote provers, and (iii) enables the detection of hardware attacks on the prover.

[1]  Srinivas Devadas,et al.  Identification and authentication of integrated circuits: Research Articles , 2004 .

[2]  Adrian Perrig,et al.  SBAP: Software-Based Attestation for Peripherals , 2010, TRUST.

[3]  Srinivas Devadas,et al.  Controlled physical random functions , 2002, 18th Annual Computer Security Applications Conference, 2002. Proceedings..

[4]  Ahmad-Reza Sadeghi,et al.  Lightweight Remote Attestation Using Physical Functions , 2011 .

[5]  Srinivas Devadas,et al.  Modeling attacks on physical unclonable functions , 2010, CCS '10.

[6]  Markus Jakobsson,et al.  Retroactive Detection of Malware with Applications to Mobile Platforms , 2010, HotSec.

[7]  Andrey Bogdanov,et al.  PRESENT: An Ultra-Lightweight Block Cipher , 2007, CHES.

[8]  Patrick Schaumont,et al.  An Analysis of Delay Based PUF Implementations on FPGA , 2010, ARC.

[9]  Ahmad-Reza Sadeghi,et al.  Lightweight Remote Attestation using Physical Functions (Extended Version) , 2011 .

[10]  Bart Preneel,et al.  Remote Attestation on Legacy Operating Systems With Trusted Platform Modules , 2008, Electron. Notes Theor. Comput. Sci..

[11]  Elaine Shi,et al.  Pioneer: verifying code integrity and enforcing untampered code execution on legacy systems , 2005, SOSP '05.

[12]  Ahmad-Reza Sadeghi,et al.  Short paper: lightweight remote attestation using physical functions , 2011, WiSec '11.

[13]  Bart Preneel,et al.  Remote attestation on legacy operating systems with trusted platform modules , 2008, Sci. Comput. Program..

[14]  Pradeep K. Khosla,et al.  SWATT: softWare-based attestation for embedded devices , 2004, IEEE Symposium on Security and Privacy, 2004. Proceedings. 2004.

[15]  Siddika Berna Ors Yalcin,et al.  Implementation of a PUF Circuit on a FPGA , 2011, 2011 4th IFIP International Conference on New Technologies, Mobility and Security.

[16]  Boris Skoric,et al.  Robust Key Extraction from Physical Uncloneable Functions , 2005, ACNS.