Post quantum cryptographic keys generated with physical unclonable functions

Bertrand Cambou; Michael Gowanlock; Bahattin Yildiz; Dina Ghanaimiandoab; Kaitlyn Lee; Stefan Nelson; Christopher Philabaum; Alyssa Stenberg; Jordan Wright

doi:10.3390/app11062801

Post quantum cryptographic keys generated with physical unclonable functions

Bertrand Cambou, Michael Gowanlock, Bahattin Yildiz, Dina Ghanaimiandoab, Kaitlyn Lee, Stefan Nelson, Christopher Philabaum, Alyssa Stenberg, Jordan Wright

Research output: Contribution to journal › Article › peer-review

12 Scopus citations

Abstract

Lattice and code cryptography can replace existing schemes such as elliptic curve cryptography because of their resistance to quantum computers. In support of public key infrastructures, the distribution, validation and storage of the cryptographic keys is then more complex for handling longer keys. This paper describes practical ways to generate keys from physical unclonable func-tions, for both lattice and code-based cryptography. Handshakes between client devices containing the physical unclonable functions (PUFs) and a server are used to select sets of addressable positions in the PUFs, from which streams of bits called seeds are generated on demand. The public and private cryptographic key pairs are computed from these seeds together with additional streams of random numbers. The method allows the server to independently validate the public key generated by the PUF, and act as a certificate authority in the network. Technologies such as high performance computing, and graphic processing units can further enhance security by preventing attackers from making this independent validation when only equipped with less powerful computers.

Original language	English (US)
Article number	2801
Journal	Applied Sciences (Switzerland)
Volume	11
Issue number	6
DOIs	https://doi.org/10.3390/app11062801
State	Published - Mar 2 2021

Keywords

Code cryptography
High performance computing
Lattice cryptography
Physical un-clonable function
Post quantum cryptography
Public key infrastructure

ASJC Scopus subject areas

Materials Science(all)
Instrumentation
Engineering(all)
Process Chemistry and Technology
Computer Science Applications
Fluid Flow and Transfer Processes

Access to Document

10.3390/app11062801

Cite this

@article{ab6c00c697dc4fa0a660bf5e0e96bfe1,

title = "Post quantum cryptographic keys generated with physical unclonable functions",

abstract = "Lattice and code cryptography can replace existing schemes such as elliptic curve cryptography because of their resistance to quantum computers. In support of public key infrastructures, the distribution, validation and storage of the cryptographic keys is then more complex for handling longer keys. This paper describes practical ways to generate keys from physical unclonable func-tions, for both lattice and code-based cryptography. Handshakes between client devices containing the physical unclonable functions (PUFs) and a server are used to select sets of addressable positions in the PUFs, from which streams of bits called seeds are generated on demand. The public and private cryptographic key pairs are computed from these seeds together with additional streams of random numbers. The method allows the server to independently validate the public key generated by the PUF, and act as a certificate authority in the network. Technologies such as high performance computing, and graphic processing units can further enhance security by preventing attackers from making this independent validation when only equipped with less powerful computers.",

keywords = "Code cryptography, High performance computing, Lattice cryptography, Physical un-clonable function, Post quantum cryptography, Public key infrastructure",

author = "Bertrand Cambou and Michael Gowanlock and Bahattin Yildiz and Dina Ghanaimiandoab and Kaitlyn Lee and Stefan Nelson and Christopher Philabaum and Alyssa Stenberg and Jordan Wright",

note = "Funding Information: This material is based upon the work funded by the Information Directorate under AFRL award number FA8750-19-2-0503. The authors thank the staff, students, and faculty from Northern Arizona University (NAU) in particular, Brandon Salter who is a software engineer in NAU{\textquoteright}s cybersecurity lab. We also thank the professionals of the Information Directorate of the Air Force Research laboratory (AFRL) of Rome, New York (US), who supported this effort. disclaimer: (a) Contractor acknowledges Government{\textquoteright}s support in the publication of this paper. This material is partially based upon the work funded by the Information Directorate, under the Air Force Research Laboratory (AFRL); (b) any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of AFRL. Publisher Copyright: {\textcopyright} 2021 by the authors. Licensee MDPI, Basel, Switzerland.",

year = "2021",

month = mar,

day = "2",

doi = "10.3390/app11062801",

language = "English (US)",

volume = "11",

journal = "Applied Sciences (Switzerland)",

issn = "2076-3417",

publisher = "Multidisciplinary Digital Publishing Institute (MDPI)",

number = "6",

}

TY - JOUR

T1 - Post quantum cryptographic keys generated with physical unclonable functions

AU - Cambou, Bertrand

AU - Gowanlock, Michael

AU - Yildiz, Bahattin

AU - Ghanaimiandoab, Dina

AU - Lee, Kaitlyn

AU - Nelson, Stefan

AU - Philabaum, Christopher

AU - Stenberg, Alyssa

AU - Wright, Jordan

N1 - Funding Information: This material is based upon the work funded by the Information Directorate under AFRL award number FA8750-19-2-0503. The authors thank the staff, students, and faculty from Northern Arizona University (NAU) in particular, Brandon Salter who is a software engineer in NAU’s cybersecurity lab. We also thank the professionals of the Information Directorate of the Air Force Research laboratory (AFRL) of Rome, New York (US), who supported this effort. disclaimer: (a) Contractor acknowledges Government’s support in the publication of this paper. This material is partially based upon the work funded by the Information Directorate, under the Air Force Research Laboratory (AFRL); (b) any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of AFRL. Publisher Copyright: © 2021 by the authors. Licensee MDPI, Basel, Switzerland.

PY - 2021/3/2

Y1 - 2021/3/2

N2 - Lattice and code cryptography can replace existing schemes such as elliptic curve cryptography because of their resistance to quantum computers. In support of public key infrastructures, the distribution, validation and storage of the cryptographic keys is then more complex for handling longer keys. This paper describes practical ways to generate keys from physical unclonable func-tions, for both lattice and code-based cryptography. Handshakes between client devices containing the physical unclonable functions (PUFs) and a server are used to select sets of addressable positions in the PUFs, from which streams of bits called seeds are generated on demand. The public and private cryptographic key pairs are computed from these seeds together with additional streams of random numbers. The method allows the server to independently validate the public key generated by the PUF, and act as a certificate authority in the network. Technologies such as high performance computing, and graphic processing units can further enhance security by preventing attackers from making this independent validation when only equipped with less powerful computers.

AB - Lattice and code cryptography can replace existing schemes such as elliptic curve cryptography because of their resistance to quantum computers. In support of public key infrastructures, the distribution, validation and storage of the cryptographic keys is then more complex for handling longer keys. This paper describes practical ways to generate keys from physical unclonable func-tions, for both lattice and code-based cryptography. Handshakes between client devices containing the physical unclonable functions (PUFs) and a server are used to select sets of addressable positions in the PUFs, from which streams of bits called seeds are generated on demand. The public and private cryptographic key pairs are computed from these seeds together with additional streams of random numbers. The method allows the server to independently validate the public key generated by the PUF, and act as a certificate authority in the network. Technologies such as high performance computing, and graphic processing units can further enhance security by preventing attackers from making this independent validation when only equipped with less powerful computers.

KW - Code cryptography

KW - High performance computing

KW - Lattice cryptography

KW - Physical un-clonable function

KW - Post quantum cryptography

KW - Public key infrastructure

UR - http://www.scopus.com/inward/record.url?scp=85103518929&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85103518929&partnerID=8YFLogxK

U2 - 10.3390/app11062801

DO - 10.3390/app11062801

M3 - Article

AN - SCOPUS:85103518929

SN - 2076-3417

VL - 11

JO - Applied Sciences (Switzerland)

JF - Applied Sciences (Switzerland)

IS - 6

M1 - 2801

ER -

Post quantum cryptographic keys generated with physical unclonable functions

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this