The Gap Between Promise and Reality: On the Insecurity of XOR Arbiter PUFs. Becker, G. T. In Cryptographic Hardware and Embedded Systems – CHES 2015, pages 535–555, September, 2015. Springer, Berlin, Heidelberg.
The Gap Between Promise and Reality: On the Insecurity of XOR Arbiter PUFs [link]Paper  doi  abstract   bibtex   
In this paper we demonstrate the first real-world cloning attack on a commercial PUF-based RFID tag. The examined commercial PUFs can be attacked by measuring only 4 protocol executions, which takes less than 200 ms. Using a RFID smartcard emulator, it is then possible to impersonate, i.e., “clone” the PUF. While attacking the 4-way PUF used by these tags can be done using traditional machine learning attacks, we show that the tags can still be attacked if they are configured as presumably secure XOR PUFs. We achieved this by using a new reliability-based machine learning attack that uses a divide-and-conquer approach for attacking the XOR PUFs. This new divide-and-conquer approach results in only a linear increase in needed number of challenge and responses for increasing numbers of XORs. This is in stark contrast to the state-of-the-art machine learning attacks on XOR PUFs that are shown to have an exponential increase in challenge and responses.Hence, it is now possible to attack XOR PUF constructs that were previously believed to be secure against machine learning attacks. Since XOR Arbiter PUFs are one of the most popular and promising electrical strong PUF designs, our reliability-based machine learning attack raises doubts that secure and lightweight electrical strong PUFs can be realized in practice.
@inproceedings{becker_gap_2015,
	title = {The {Gap} {Between} {Promise} and {Reality}: {On} the {Insecurity} of {XOR} {Arbiter} {PUFs}},
	shorttitle = {The {Gap} {Between} {Promise} and {Reality}},
	url = {https://link.springer.com/chapter/10.1007/978-3-662-48324-4_27},
	doi = {10.1007/978-3-662-48324-4_27},
	abstract = {In this paper we demonstrate the first real-world cloning attack on a commercial PUF-based RFID tag. The examined commercial PUFs can be attacked by measuring only 4 protocol executions, which takes less than 200 ms. Using a RFID smartcard emulator, it is then possible to impersonate, i.e., “clone” the PUF. While attacking the 4-way PUF used by these tags can be done using traditional machine learning attacks, we show that the tags can still be attacked if they are configured as presumably secure XOR PUFs. We achieved this by using a new reliability-based machine learning attack that uses a divide-and-conquer approach for attacking the XOR PUFs. This new divide-and-conquer approach results in only a linear increase in needed number of challenge and responses for increasing numbers of XORs. This is in stark contrast to the state-of-the-art machine learning attacks on XOR PUFs that are shown to have an exponential increase in challenge and responses.Hence, it is now possible to attack XOR PUF constructs that were previously believed to be secure against machine learning attacks. Since XOR Arbiter PUFs are one of the most popular and promising electrical strong PUF designs, our reliability-based machine learning attack raises doubts that secure and lightweight electrical strong PUFs can be realized in practice.},
	language = {en},
	urldate = {2017-06-17TZ},
	booktitle = {Cryptographic {Hardware} and {Embedded} {Systems} -- {CHES} 2015},
	publisher = {Springer, Berlin, Heidelberg},
	author = {Becker, Georg T.},
	month = sep,
	year = {2015},
	pages = {535--555}
}
Downloads: 0
About
Documentation
Keywords
Search
Users
Terms and Conditions of Use
Privacy Policy
Sitemap
© BibBase.org 2021