physically restricted authentication and encryption for
play

Physically Restricted Authentication and Encryption for - PDF document

Aug 27, 2023 •380 likes •438 views

11/12/09 Physically Restricted Authentication and Encryption for Cyber-physical Systems Michael Kirkpatrick, Elisa Bertino Purdue University Frederick Sheldon Oak Ridge National Laboratory DHS: S&T Workshop on Future Directions in

  1. 11/12/09 Physically Restricted Authentication and Encryption for Cyber-physical Systems Michael Kirkpatrick, Elisa Bertino Purdue University Frederick Sheldon Oak Ridge National Laboratory DHS: S&T Workshop on Future Directions in Cyber-physical Systems Security July 23, 2009 Managed by UT-Battelle for the Department of Energy Key Problems for CPS Cyber Cyberspace Sciences & Inf space Sciences & Infor orma mation tion Intelligence R Intelligence Resear esearch Gr h Group oup • Data provenance and integrity – Origin of data is known – Changes are tracked • CPS vs. traditional computing – Decentralized – Not desktop/server model – Continuous, not discrete • Goal is to restrict access to trusted devices – First, one must identify the device! 2 Managed by UT-Battelle for the Department of Energy 1

  2. 11/12/09 Authorization Mechanisms Cyber Cyberspace Sciences & Inf space Sciences & Infor orma mation tion Intelligence Resear Intelligence R esearch Gr h Group oup • Physical key – Continuous – “Clonable” • Cryptographic key – Discrete – Clonable • CPS identification – Based on continuous, physical properties – Can be discretized – Unclonable 3 Managed by UT-Battelle for the Department of Energy Physical Unclonable Functions (PUFs) Cyber Cyberspace Sciences & Inf space Sciences & Infor orma mation tion Intelligence R Intelligence Resear esearch Gr h Group oup • One-way function – Given challenge C i , response is R i – R i cannot be predicted or duplicated – R i continuous, but can be made discrete • SRAM-based PUFs – SRAM bits start in the same state (0 or 1) with high probability • Not affected by previous computation – C i is a range of memory locations in SRAM 4 Managed by UT-Battelle for the Department of Energy 2

  3. 11/12/09 Usage of Discretized PUFs Cyber Cyberspace Sciences & Inf space Sciences & Infor orma mation tion Intelligence R Intelligence Resear esearch Gr h Group oup • Secure cryptographic key storage – Given key K, create and store X = K XOR R i – X can be stored in plaintext (!) • Cryptographic key generation – For ECC, point P, R i is private key, K pub = R i * P – For Feige-Fiat-Shamir, public identity commitment is R i 2 mod n 5 Managed by UT-Battelle for the Department of Energy Advantages of PUFs Cyber Cyberspace Sciences & Inf space Sciences & Infor orma mation tion Intelligence Resear Intelligence R esearch Gr h Group oup • SRAM is everywhere – ASICs, processor caches, FPGAs, micro- controllers, embedded devices – Devices without TPM or tamper-proof hardware • Cryptographic key exists only when needed • Bound to the hardware itself – Uniquely identifies hardware instance 6 Managed by UT-Battelle for the Department of Energy 3

  4. 11/12/09 Challenges and Open Problems Cyber Cyberspace Sciences & Inf space Sciences & Infor orma mation tion Intelligence Resear Intelligence R esearch Gr h Group oup • No tool support – PUFs have been created just as proof-of-concept • Delicacy of (C i ,R i ) and revocation • New protocols designed specifically for PUFs – Use function as ZKPK secret • Heterogeneous devices for CPS – PUFs for different types of hardware? • Scalable identity management for large sensor networks 7 Managed by UT-Battelle for the Department of Energy References Cyberspace Sciences & Inf Cyber space Sciences & Infor orma mation tion Intelligence R Intelligence Resear esearch Gr h Group oup B. Gassend, D. Clarke, M. van Dijk, S. Devadas, “Controlled Physical Random • Functions.” In Proceedings of the 18 th Annual Computer Security Applications Conference (ACSAC) , 2002. J. Guajardo, S. S. Kumar, G.-J. Schrijen, P. Tuyls, “Physical Unclonable • Functions and Public-key Crypto for FPGA IP Protection.” In International Conference on Field Programmable Logic and Applications , 2007. S. S. Kumar, J Guajardo, R. Maes, G.-J. Schrijen, P. Tuyls, “Extended Abstract: • The Butterfly PUF Protecting IP on Every FPGA.” In IEEE International Workshop on Hardware-Oriented Security and Trust (HOST) , 2008. G. E. Suh, S. Devadas, “Physical Unclonable Functions for Device • Authentication and Secret Key Generation.” In Proceedings of the 44 th IEEE Design Automation Conference (DAC) , 2007. 8 Managed by UT-Battelle for the Department of Energy 4

Recommend

1 Message Encryption- see Table 11.1 in the book Message Encryption if public-key encryption

1 Message Encryption- see Table 11.1 in the book Message Encryption if public-key encryption

Message Authentication CPE 542: CRYPTOGRAPHY & NETWORK SECURITY message authentication is concerned with: protecting the integrity of a message Chapter 11 Message Authentication and validating identity of originator Hash

462 views • 6 slides
Quantum Authentication and Encryption with Key Recycling Or: How to Re-use a One-Time Pad Even if

Quantum Authentication and Encryption with Key Recycling Or: How to Re-use a One-Time Pad Even if

Quantum Authentication and Encryption with Key Recycling Or: How to Re-use a One-Time Pad Even if P = NP Safely & Feasibly Serge Fehr Louis Salvail CWI Amsterdam University of Montral Encryption & Authentication Schemes with

830 views • 62 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

613 views • 27 slides
Permutation-based encryption, authentication and authenticated encryption Joan Daemen 1 Joint

Permutation-based encryption, authentication and authenticated encryption Joan Daemen 1 Joint

. . . . . . Permutation-based encryption, authentication and authenticated encryption Permutation-based encryption, authentication and authenticated encryption Joan Daemen 1 Joint work with DIAC 2012, Stockholm, July 6 Guido Bertoni 1 ,

739 views • 49 slides
Permutation-based encryption, authentication and authenticated encryption Guido Bertoni 1 , Joan

Permutation-based encryption, authentication and authenticated encryption Guido Bertoni 1 , Joan

Permutation-based encryption, authentication and authenticated encryption Guido Bertoni 1 , Joan Daemen 1 , Michal Peeters 2 , and Gilles Van Assche 1 1 STMicroelectronics 2 NXP Semiconductors Abstract. While mainstream symmetric cryptography has

519 views • 12 slides
Innovations in permutation-based encryption & authentication . based on joint work with

Innovations in permutation-based encryption & authentication . based on joint work with

Innovations in permutation-based encryption & authentication . based on joint work with Fast Software Encryption Conference 2017 1 Joan Daemen 1 , 2 Guido Bertoni 1 , Michal Peeters 1 , Gilles Van Assche 1 and Ronny Van Keer 1 1

855 views • 30 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
Message Authentication MAC and Hash SMU CSE 5349/49 Message Authentication Verify that

Message Authentication MAC and Hash SMU CSE 5349/49 Message Authentication Verify that

Message Authentication MAC and Hash SMU CSE 5349/49 Message Authentication Verify that messages come from the alleged source, unaltered SMU CSE 5349/7349 Authentication Functions Message encryption Ciphertext itself serves as

1.16k views • 69 slides
CAN AUTHENTICATION AND ENCRYPTION February 2017 CAN PROVIDES MULTIPLE ATTACK VECTORS Record

CAN AUTHENTICATION AND ENCRYPTION February 2017 CAN PROVIDES MULTIPLE ATTACK VECTORS Record

Implementing scalable CAN Security with CANcrypt by Olaf Pfeiffer CAN AUTHENTICATION AND ENCRYPTION February 2017 CAN PROVIDES MULTIPLE ATTACK VECTORS Record and re-play messages Can trigger desired actions Re-engineering

321 views • 21 slides
tcpcrypt Mark Handley What would it take to encrypt all the traffic on the Internet, by

tcpcrypt Mark Handley What would it take to encrypt all the traffic on the Internet, by

tcpcrypt Mark Handley What would it take to encrypt all the traffic on the Internet, by default, all the time? Crypto 101: Encryption without authentication is useless. Encryption without authentication is like meeting a stranger in a

813 views • 31 slides
Tools for Security Physical security Access control Encryption Authentication

Tools for Security Physical security Access control Encryption Authentication

Tools for Security Physical security Access control Encryption Authentication Encapsulation Intrusion detection Common sense Lecture 2 Page 1 CS 236 Online Physical Security Lock up your computer Actually,

465 views • 35 slides
Authentication Dr. Steven Bitner Hashing Hashing is ONE WAY encryption You cannot

Authentication Dr. Steven Bitner Hashing Hashing is ONE WAY encryption You cannot

Authentication Dr. Steven Bitner Hashing Hashing is ONE WAY encryption You cannot retrieve the plain text Common hashes: md5 sha1 sha256 $password = hash (md5,$password); Better (though less common hash) Bcrypt

355 views • 18 slides
Small high-security encryption, authentication, and hashing D. J. Bernstein University of

Small high-security encryption, authentication, and hashing D. J. Bernstein University of

Small high-security encryption, authentication, and hashing D. J. Bernstein University of Illinois at Chicago Main goals of cryptography Alice and Bob are communicating. Eve is eavesdropping. Alice and Bob have several standard security

310 views • 29 slides
Authentication and Encryption Kelly Rivers and Stephanie Rosenthal 15-110 Fall 2019 The In

Authentication and Encryption Kelly Rivers and Stephanie Rosenthal 15-110 Fall 2019 The In

In Internet Security: Authentication and Encryption Kelly Rivers and Stephanie Rosenthal 15-110 Fall 2019 The In Internet: A Utopian Vision The In Internet: Reality Main Questions First who are the bad actors or r adversarie ies?

515 views • 24 slides
Lecture 11 Authentication 1 Where are we now? We know a bit of the following:

Lecture 11 Authentication 1 Where are we now? We know a bit of the following:

Lecture 11 Authentication 1 Where are we now? We know a bit of the following: Conventional cryptography Hash functions and MACs Public key cryptography Encryption Signatures Identification (Fiat-Shamir) + Zero

213 views • 9 slides
The Limited Power of Verification Queries in Message Authentication and Authenticated Encryption

The Limited Power of Verification Queries in Message Authentication and Authenticated Encryption

The Limited Power of Verification Queries in Message Authentication and Authenticated Encryption September 29, 2015 Atul Luykx, Bart Preneel, Kan Yasuda 1 / 15 Modes of Operation p E K F K E K 2 / 15 Modes of Operation p E K F K

428 views • 42 slides
(Hierarchical) Identity-Based Encryption from Affine Message Authentication Crypto 2014 , Olivier

(Hierarchical) Identity-Based Encryption from Affine Message Authentication Crypto 2014 , Olivier

(Hierarchical) Identity-Based Encryption from Affine Message Authentication Crypto 2014 , Olivier Blazy Eike Kiltz Jiaxin Pan Horst Grtz Institute for IT Security Ruhr-University Bochum 1 Introduction 2 Affine MAC 3 From Affine MAC to IBE 4

880 views • 58 slides
Cryptography: Symmetric Encryption (finish), Hash Functions, Message Authentication Codes Spring

Cryptography: Symmetric Encryption (finish), Hash Functions, Message Authentication Codes Spring

CSE 484 / CSE M 584: Computer Security and Privacy Cryptography: Symmetric Encryption (finish), Hash Functions, Message Authentication Codes Spring 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann,

529 views • 34 slides
Cryptography: Symmetric Encryption (finish), Hash Functions, Message Authentication Codes Fall

Cryptography: Symmetric Encryption (finish), Hash Functions, Message Authentication Codes Fall

CSE 484 / CSE M 584: Computer Security and Privacy Cryptography: Symmetric Encryption (finish), Hash Functions, Message Authentication Codes Fall 2016 Adam (Ada) Lerner lerner@cs.washington.edu Thanks to Franzi Roesner, Dan Boneh, Dieter

813 views • 43 slides
sRDMA Efficient NICbased Authentication and Encryption for Remote Direct Memory Access

sRDMA Efficient NICbased Authentication and Encryption for Remote Direct Memory Access

spcl.inf.ethz.ch @spcl_eth Konstantin Taranov, Benjamin Rothenberger, Adrian Perrig, Torsten Hoefler sRDMA Efficient NICbased Authentication and Encryption for Remote Direct Memory Access spcl.inf.ethz.ch @spcl_eth RDMA networking is

2.47k views • 30 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
WPA and RSN Authentication Protocols Sean Kugele CS 6204, Spring 2005 1 Motivation

WPA and RSN Authentication Protocols Sean Kugele CS 6204, Spring 2005 1 Motivation

WPA and RSN Authentication Protocols Sean Kugele CS 6204, Spring 2005 1 Motivation Weaknesses in the WEP protocol 1. No protection against message tampering 2. Incorrect usage of an encryption algorithm 3. Replayable authentication

519 views • 24 slides
Lecture 9 Authentication & Key Distribution 1 Where are we now? We know a bit of

Lecture 9 Authentication & Key Distribution 1 Where are we now? We know a bit of

Lecture 9 Authentication & Key Distribution 1 Where are we now? We know a bit of the following: Conventional (symmetric) cryptography Hash functions and MACs Public key (asymmetric) cryptography Encryption

490 views • 33 slides

More recommend