Cryptology ePrint Archive: Report 2017/422

Building PUF based Authentication and Key Exchange Protocol for IoT without Explicit CRPs in Verifier Database

Urbi Chatterjee and Vidya Govindan and Rajat Sadhukhan and Debdeep Mukhopadhyay and Rajat Subhra Chakraborty and Debashis Mahata and Mukesh Prabhu

Abstract: Physically Unclonable Functions (PUFs) promise to be a critical hardware primitive to provide unique identities to billions of connected devices in Internet of Things (IoTs). In traditional authentication protocols a user presents a set of credentials with an accompanying proof such as password or digital certificate. However, IoTs need more evolved methods as these classical techniques suffer from the pressing problems of password dependency and inability to bind access requests to the “things” from which they originate. Additionally, the protocols need to be lightweight and heterogeneous. Although PUFs seem promising to develop such mechanism, it puts forward an open problem of how to develop such mechanism without needing to store the secret challenge-response pair (CRP) explicitly at the verifier end. In this paper, we develop an authentication and key exchange protocol by combining the ideas of Identity based Encryption (IBE), PUFs and Key-ed Hash Function to show that this combination can help to do away with this requirement. The security of the protocol is proved formally under the Session Key Security and the Universal Composability Framework. A prototype of the protocol has been implemented to realize a secured video surveillance camera using a combination of an Intel Edison board, with a Digilent Nexys-4 FPGA board consisting of an Artix-7 FPGA, together serving as the IoT node. We show, though the stand-alone video camera can be subjected to man-in-the-middle attack via IP-spoofing using standard network penetration tools, the camera augmented with the proposed protocol resists such attacks and it suits aptly in an IoT infrastructure making the protocol deployable for the industry.

Category / Keywords: Physically Unclonable Functions, Elliptic Curve Cryptography, Identity based Encryption, Internet of Things, Device Authentication, Key management.

Date: received 16 May 2017, last revised 6 Mar 2018

Contact author: urbi chatterjee at cse iitkgp ernet in

Available format(s): PDF | BibTeX Citation

Version: 20180306:113300 (All versions of this report)

Short URL: ia.cr/2017/422

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]