TY - GEN
T1 - Implementation of Password Management System Using Ternary Addressable PUF Generator
AU - Mohammadinodoushan, Mohammad
AU - Cambou, Bertrand
AU - Philabaum, Christopher
AU - Hely, David
AU - Booher, D. Duane
N1 - Publisher Copyright:
© 2019 IEEE.
PY - 2019/6
Y1 - 2019/6
N2 - One of the crucial cyber-attacks which has been reported is hacking the databases of users' identification and passwords. Surprisingly, the typical procedure in most networks is the saving of passwords or password hashes in the look-up tables, which can be accessed later via the identification of each user. This paper seeks to find a remedy to this problem by adding a hardware security layer to the hash function-based password management systems. Also, the hardware security module, which is utilized as a solution in this paper, accelerates the computationally intense cryptographic operations. Addressable PUF Generator (APG) is utilized as a hardware layer. A significant problem with PUFs, i.e., the instability of their responses, is addressed in this paper. Ternary APG is implemented by using the ternary PUFs to solve this problem. The architecture takes advantage of known technology modules such as SRAM PUFs, hash functions, and microcontrollers. Furthermore, the protocol is used as a solution in this paper does not need saving passwords or hash of passwords. To the best of our knowledge, this paper presents the first prototype implementation of ternary APG usage in the password management system.
AB - One of the crucial cyber-attacks which has been reported is hacking the databases of users' identification and passwords. Surprisingly, the typical procedure in most networks is the saving of passwords or password hashes in the look-up tables, which can be accessed later via the identification of each user. This paper seeks to find a remedy to this problem by adding a hardware security layer to the hash function-based password management systems. Also, the hardware security module, which is utilized as a solution in this paper, accelerates the computationally intense cryptographic operations. Addressable PUF Generator (APG) is utilized as a hardware layer. A significant problem with PUFs, i.e., the instability of their responses, is addressed in this paper. Ternary APG is implemented by using the ternary PUFs to solve this problem. The architecture takes advantage of known technology modules such as SRAM PUFs, hash functions, and microcontrollers. Furthermore, the protocol is used as a solution in this paper does not need saving passwords or hash of passwords. To the best of our knowledge, this paper presents the first prototype implementation of ternary APG usage in the password management system.
KW - APG
KW - SRAM
KW - hash functions
KW - password management
KW - ternary PUFs
UR - http://www.scopus.com/inward/record.url?scp=85073034617&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85073034617&partnerID=8YFLogxK
U2 - 10.1109/SAHCN.2019.8824792
DO - 10.1109/SAHCN.2019.8824792
M3 - Conference contribution
AN - SCOPUS:85073034617
T3 - Annual IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks workshops
BT - 2019 16th Annual IEEE International Conference on Sensing, Communication, and Networking, SECON 2019
PB - IEEE Computer Society
T2 - 16th Annual IEEE International Conference on Sensing, Communication, and Networking, SECON 2019
Y2 - 10 June 2019 through 13 June 2019
ER -