Skip to content

Measurement applications for our contribution: PUF for the Commons: Enhancing Embedded Security on the OS Level

Notifications You must be signed in to change notification settings

inetrg/IEEE-TDSC-PUF23

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

PUF for the Commons: Enhancing Embedded Security on the OS Level (submitted to TDSC 2023)

Paper Preprint Data

This repository contains code and documentation to reproduce experimental results of the paper "PUF for the Commons: Enhancing Embedded Security on the OS Level" accepted for publication in IEEE Transactions on Dependable and Secure Computing 2023.

Abstract

Security is essential for the Internet of Things (IoT). Cryptographic operations for authentication and encryption commonly rely on random input of high entropy and secure, tamper-resistant identities, which are difficult to obtain on constrained embedded devices. In this paper, we design and analyze a generic integration of physically unclonable functions (PUFs) into the IoT operating system RIOT that supports about 250 platforms. Our approach leverages uninitialized SRAM to act as the digital fingerprint for heterogeneous devices. We ground our design on an extensive study of PUF performance in the wild, which involves SRAM measurements on more than 700 IoT nodes that aged naturally in the real-world. We quantify static SRAM bias, as well as the aging effects of devices and incorporate the results in our system. This work closes a previously identified gap of missing statistically significant sample sizes for testing the unpredictability of PUFs. Our experiments on COTS devices of 64 kB SRAM indicate that secure random seeds derived from the SRAM PUF provide 256 Bits-, and device unique keys provide more than 128 Bits of security. In a practical security assessment we show that SRAM PUFs resist moderate attack scenarios, which greatly improves the security of low-end IoT devices.

Please follow our Getting Started instructions for further information on how to compile and execute the code.

About

Measurement applications for our contribution: PUF for the Commons: Enhancing Embedded Security on the OS Level

Topics

Resources

Stars

Watchers

Forks