Trapdoor Computational Fuzzy Extractors and Stateless Cryptographically-Secure Physical Unclonable Functions

Charles Herder, Ling Ren, Marten Van Dijk, Meng Day Yu, Srinivas Devadas

Research output: Contribution to journalArticlepeer-review

Abstract

We present a fuzzy extractor whose security can be reduced to the hardness of Learning Parity with Noise (LPN) and can efficiently correct a constant fraction of errors in a biometric source with a 'noise-avoiding trapdoor.' Using this computational fuzzy extractor, we present a stateless construction of a cryptographically-secure Physical Unclonable Function. Our construct requires no non-volatile (permanent) storage, secure or otherwise, and its computational security can be reduced to the hardness of an LPN variant under the random oracle model. The construction is 'stateless,' because there is no information stored between subsequent queries, which mitigates attacks against the PUF via tampering. Moreover, our stateless construction corresponds to a PUF whose outputs are free of noise because of internal error-correcting capability, which enables a host of applications beyond authentication. We describe the construction, provide a proof of computational security, analysis of the security parameter for system parameter choices, and present experimental evidence that the construction is practical and reliable under a wide environmental range.

Original languageEnglish (US)
Article number7422776
Pages (from-to)65-82
Number of pages18
JournalIEEE Transactions on Dependable and Secure Computing
Volume14
Issue number1
DOIs
StatePublished - Jan 1 2017
Externally publishedYes

Keywords

  • Fuzzy extractor
  • learning parity with noise
  • physical unclonable function
  • physically obfuscated keys
  • ring oscillators

ASJC Scopus subject areas

  • Electrical and Electronic Engineering

Fingerprint Dive into the research topics of 'Trapdoor Computational Fuzzy Extractors and Stateless Cryptographically-Secure Physical Unclonable Functions'. Together they form a unique fingerprint.

Cite this