Remote Attestation Mechanism based on Physical Unclonable Functions

Raja Naeem Akram; Konstantinos Markantonakis; Keith Mayes

doi:10.3233/978-1-61499-328-5-107

Remote Attestation Mechanism based on Physical Unclonable Functions

Raja Naeem Akram, Konstantinos Markantonakis, Keith Mayes

Computing Science

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

Abstract

Remote attestation mechanisms are well studied in the high-end computing environments; however, the same is not true for embedded devices - especially for smart cards. With ever changing landscape of smart card technology and advancements towards a true multi-application platform, verifying the current state of the smart card is significant to the overall security of such proposals. The initiatives proposed by GlobalPlatform Consumer Centric Model (GP-CCM) and User Centric Smart Card Ownership Model (UCOM) enables a user to download any application as she desire - depending upon the authorisation of the application provider. Before an application provider issues an application to a smart card, verifying the current state of the smart card is crucial to the security of the respective application. In this paper, we analyse the rationale behind the remote attestation mechanism for smart cards, and the fundamental features that such a mechanism should possess. We also study the applicability of Physical Unclonable Functions (PUFs) for the remote attestation mechanism and propose two algorithms to achieve the stated features of remote attestation. The proposed algorithms are implemented in a test environment to evaluate their performance.

Original language	English
Title of host publication	Radio Frequency Identification System Security
Place of Publication	Guangzhou, China
Publisher	IOS Press
Pages	107-121
Number of pages	14
ISBN (Electronic)	978-1-61499-328-5
ISBN (Print)	978-1-61499-327-8
DOIs	https://doi.org/10.3233/978-1-61499-328-5-107
Publication status	Published - 1 Nov 2013
Event	The 2013 Workshop on RFID and IoT Security (RFIDsec'13 Asia - Guangzhou, China Duration: 27 Nov 2013 → 27 Nov 2013 http://ebooks.iospress.nl/volume/radio-frequency-identification-system-security-rfidsec13-asia-workshop-proceedings

Publication series

Name	Cryptology and Information Security Series
Publisher	IOS press
Volume	11
ISSN (Print)	1871-6431
ISSN (Electronic)	1879-8101

Workshop

Workshop	The 2013 Workshop on RFID and IoT Security (RFIDsec'13 Asia
Country/Territory	China
City	Guangzhou
Period	27/11/13 → 27/11/13
Internet address	http://ebooks.iospress.nl/volume/radio-frequency-identification-system-security-rfidsec13-asia-workshop-proceedings

Access to Document

10.3233/978-1-61499-328-5-107Licence: Unspecified

Cite this

Remote Attestation Mechanism based on Physical Unclonable Functions. / Akram, Raja Naeem; Markantonakis, Konstantinos; Mayes, Keith.

Radio Frequency Identification System Security. Guangzhou, China : IOS Press, 2013. p. 107-121 (Cryptology and Information Security Series; Vol. 11).

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

Akram, RN, Markantonakis, K & Mayes, K 2013, Remote Attestation Mechanism based on Physical Unclonable Functions. in Radio Frequency Identification System Security. Cryptology and Information Security Series, vol. 11, IOS Press, Guangzhou, China, pp. 107-121, The 2013 Workshop on RFID and IoT Security (RFIDsec'13 Asia, Guangzhou, China, 27/11/13. https://doi.org/10.3233/978-1-61499-328-5-107

@inproceedings{5eae0546a75d41aab7fda984e45fec6d,

title = "Remote Attestation Mechanism based on Physical Unclonable Functions",

abstract = "Remote attestation mechanisms are well studied in the high-end computing environments; however, the same is not true for embedded devices - especially for smart cards. With ever changing landscape of smart card technology and advancements towards a true multi-application platform, verifying the current state of the smart card is significant to the overall security of such proposals. The initiatives proposed by GlobalPlatform Consumer Centric Model (GP-CCM) and User Centric Smart Card Ownership Model (UCOM) enables a user to download any application as she desire - depending upon the authorisation of the application provider. Before an application provider issues an application to a smart card, verifying the current state of the smart card is crucial to the security of the respective application. In this paper, we analyse the rationale behind the remote attestation mechanism for smart cards, and the fundamental features that such a mechanism should possess. We also study the applicability of Physical Unclonable Functions (PUFs) for the remote attestation mechanism and propose two algorithms to achieve the stated features of remote attestation. The proposed algorithms are implemented in a test environment to evaluate their performance.",

author = "Akram, {Raja Naeem} and Konstantinos Markantonakis and Keith Mayes",

year = "2013",

month = nov,

day = "1",

doi = "10.3233/978-1-61499-328-5-107",

language = "English",

isbn = "978-1-61499-327-8 ",

series = "Cryptology and Information Security Series",

publisher = "IOS Press",

pages = "107--121",

booktitle = "Radio Frequency Identification System Security",

address = "United States",

note = "The 2013 Workshop on RFID and IoT Security (RFIDsec'13 Asia ; Conference date: 27-11-2013 Through 27-11-2013",

url = "http://ebooks.iospress.nl/volume/radio-frequency-identification-system-security-rfidsec13-asia-workshop-proceedings",

}

TY - GEN

T1 - Remote Attestation Mechanism based on Physical Unclonable Functions

AU - Akram, Raja Naeem

AU - Markantonakis, Konstantinos

AU - Mayes, Keith

PY - 2013/11/1

Y1 - 2013/11/1

N2 - Remote attestation mechanisms are well studied in the high-end computing environments; however, the same is not true for embedded devices - especially for smart cards. With ever changing landscape of smart card technology and advancements towards a true multi-application platform, verifying the current state of the smart card is significant to the overall security of such proposals. The initiatives proposed by GlobalPlatform Consumer Centric Model (GP-CCM) and User Centric Smart Card Ownership Model (UCOM) enables a user to download any application as she desire - depending upon the authorisation of the application provider. Before an application provider issues an application to a smart card, verifying the current state of the smart card is crucial to the security of the respective application. In this paper, we analyse the rationale behind the remote attestation mechanism for smart cards, and the fundamental features that such a mechanism should possess. We also study the applicability of Physical Unclonable Functions (PUFs) for the remote attestation mechanism and propose two algorithms to achieve the stated features of remote attestation. The proposed algorithms are implemented in a test environment to evaluate their performance.

AB - Remote attestation mechanisms are well studied in the high-end computing environments; however, the same is not true for embedded devices - especially for smart cards. With ever changing landscape of smart card technology and advancements towards a true multi-application platform, verifying the current state of the smart card is significant to the overall security of such proposals. The initiatives proposed by GlobalPlatform Consumer Centric Model (GP-CCM) and User Centric Smart Card Ownership Model (UCOM) enables a user to download any application as she desire - depending upon the authorisation of the application provider. Before an application provider issues an application to a smart card, verifying the current state of the smart card is crucial to the security of the respective application. In this paper, we analyse the rationale behind the remote attestation mechanism for smart cards, and the fundamental features that such a mechanism should possess. We also study the applicability of Physical Unclonable Functions (PUFs) for the remote attestation mechanism and propose two algorithms to achieve the stated features of remote attestation. The proposed algorithms are implemented in a test environment to evaluate their performance.

U2 - 10.3233/978-1-61499-328-5-107

DO - 10.3233/978-1-61499-328-5-107

M3 - Published conference contribution

SN - 978-1-61499-327-8

T3 - Cryptology and Information Security Series

SP - 107

EP - 121

BT - Radio Frequency Identification System Security

PB - IOS Press

CY - Guangzhou, China

T2 - The 2013 Workshop on RFID and IoT Security (RFIDsec'13 Asia

Y2 - 27 November 2013 through 27 November 2013

ER -

Remote Attestation Mechanism based on Physical Unclonable Functions

Abstract

Publication series

Workshop

Access to Document

Fingerprint

Cite this