Software Implementation of a SRAM PUF-Based Password Manager

Sareh Assiri; Bertrand Cambou; D. Duane Booher; Mohammad Mohammadinodoushan

doi:10.1007/978-3-030-52243-8_26

Software Implementation of a SRAM PUF-Based Password Manager

Sareh Assiri, Bertrand Cambou, D. Duane Booher, Mohammad Mohammadinodoushan

Applied Physics and Materials Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

6 Scopus citations

Abstract

The main goal of narrating the password-management protocol is to reduce the prevalent attacks on cyber-physical systems such as the hacking of databases of User-ID-Password pairs and side-channel analysis. The architecture uses a hash function to hash the password and user ID has weakness can help to crack the password. So, the architecture utilizes both hash function and the Addressable Physical unclonable function (PUF) Generator (APG) to authenticate clients on the network without keeping the real format of passwords in the database. The hash function and APG together are more difficult to attack because they are unclonable, have a high level of randomness, and do not depend on storing information. This paper shows a simulation prototype for how the password manager protocol can work depending on the SHA-3-512 and SRAM PUF. Furthermore, the paper shows how to encrypt the database content of password manager by using the SRAM PUF and provides a software solution of the noise of SRAM PUF to reduce the rate of false rejections for the real user and false acceptance for the not existing user.

Original language	English (US)
Title of host publication	Intelligent Computing - Proceedings of the 2020 Computing Conference
Editors	Kohei Arai, Supriya Kapoor, Rahul Bhatia
Publisher	Springer
Pages	361-379
Number of pages	19
ISBN (Print)	9783030522421
DOIs	https://doi.org/10.1007/978-3-030-52243-8_26
State	Published - 2020
Event	Science and Information Conference, SAI 2020 - London, United Kingdom Duration: Jul 16 2020 → Jul 17 2020

Publication series

Name	Advances in Intelligent Systems and Computing
Volume	1230 AISC
ISSN (Print)	2194-5357
ISSN (Electronic)	2194-5365

Conference

Conference	Science and Information Conference, SAI 2020
Country/Territory	United Kingdom
City	London
Period	7/16/20 → 7/17/20

Keywords

Authentication
Exist user
Hash functions
New user
Password management
Physical unclonable function
SRAM PUF with password manager

ASJC Scopus subject areas

Control and Systems Engineering
Computer Science(all)

Access to Document

10.1007/978-3-030-52243-8_26

Cite this

Assiri, S., Cambou, B., Booher, D. D., & Mohammadinodoushan, M. (2020). Software Implementation of a SRAM PUF-Based Password Manager. In K. Arai, S. Kapoor, & R. Bhatia (Eds.), Intelligent Computing - Proceedings of the 2020 Computing Conference (pp. 361-379). (Advances in Intelligent Systems and Computing; Vol. 1230 AISC). Springer. https://doi.org/10.1007/978-3-030-52243-8_26

Software Implementation of a SRAM PUF-Based Password Manager. / Assiri, Sareh; Cambou, Bertrand; Booher, D. Duane et al.
Intelligent Computing - Proceedings of the 2020 Computing Conference. ed. / Kohei Arai; Supriya Kapoor; Rahul Bhatia. Springer, 2020. p. 361-379 (Advances in Intelligent Systems and Computing; Vol. 1230 AISC).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Assiri, S, Cambou, B, Booher, DD & Mohammadinodoushan, M 2020, Software Implementation of a SRAM PUF-Based Password Manager. in K Arai, S Kapoor & R Bhatia (eds), Intelligent Computing - Proceedings of the 2020 Computing Conference. Advances in Intelligent Systems and Computing, vol. 1230 AISC, Springer, pp. 361-379, Science and Information Conference, SAI 2020, London, United Kingdom, 7/16/20. https://doi.org/10.1007/978-3-030-52243-8_26

@inproceedings{a6cbcfab0f37489b9535a6a2aa10aa78,

title = "Software Implementation of a SRAM PUF-Based Password Manager",

abstract = "The main goal of narrating the password-management protocol is to reduce the prevalent attacks on cyber-physical systems such as the hacking of databases of User-ID-Password pairs and side-channel analysis. The architecture uses a hash function to hash the password and user ID has weakness can help to crack the password. So, the architecture utilizes both hash function and the Addressable Physical unclonable function (PUF) Generator (APG) to authenticate clients on the network without keeping the real format of passwords in the database. The hash function and APG together are more difficult to attack because they are unclonable, have a high level of randomness, and do not depend on storing information. This paper shows a simulation prototype for how the password manager protocol can work depending on the SHA-3-512 and SRAM PUF. Furthermore, the paper shows how to encrypt the database content of password manager by using the SRAM PUF and provides a software solution of the noise of SRAM PUF to reduce the rate of false rejections for the real user and false acceptance for the not existing user.",

keywords = "Authentication, Exist user, Hash functions, New user, Password management, Physical unclonable function, SRAM PUF with password manager",

author = "Sareh Assiri and Bertrand Cambou and Booher, {D. Duane} and Mohammad Mohammadinodoushan",

note = "Funding Information: The author is thanking the contribution of several graduate students at the cyber-security lab at Northern Arizona University, in particular, Christopher Philabaum, Vince Rodriguez, Ian Burke, and Dina Ghanaimiandoab. Also, the author is thanking the contribution of Jazan University. Publisher Copyright: {\textcopyright} 2020, Springer Nature Switzerland AG.; Science and Information Conference, SAI 2020 ; Conference date: 16-07-2020 Through 17-07-2020",

year = "2020",

doi = "10.1007/978-3-030-52243-8_26",

language = "English (US)",

isbn = "9783030522421",

series = "Advances in Intelligent Systems and Computing",

publisher = "Springer",

pages = "361--379",

editor = "Kohei Arai and Supriya Kapoor and Rahul Bhatia",

booktitle = "Intelligent Computing - Proceedings of the 2020 Computing Conference",

}

TY - GEN

T1 - Software Implementation of a SRAM PUF-Based Password Manager

AU - Assiri, Sareh

AU - Cambou, Bertrand

AU - Booher, D. Duane

AU - Mohammadinodoushan, Mohammad

N1 - Funding Information: The author is thanking the contribution of several graduate students at the cyber-security lab at Northern Arizona University, in particular, Christopher Philabaum, Vince Rodriguez, Ian Burke, and Dina Ghanaimiandoab. Also, the author is thanking the contribution of Jazan University. Publisher Copyright: © 2020, Springer Nature Switzerland AG.

PY - 2020

Y1 - 2020

N2 - The main goal of narrating the password-management protocol is to reduce the prevalent attacks on cyber-physical systems such as the hacking of databases of User-ID-Password pairs and side-channel analysis. The architecture uses a hash function to hash the password and user ID has weakness can help to crack the password. So, the architecture utilizes both hash function and the Addressable Physical unclonable function (PUF) Generator (APG) to authenticate clients on the network without keeping the real format of passwords in the database. The hash function and APG together are more difficult to attack because they are unclonable, have a high level of randomness, and do not depend on storing information. This paper shows a simulation prototype for how the password manager protocol can work depending on the SHA-3-512 and SRAM PUF. Furthermore, the paper shows how to encrypt the database content of password manager by using the SRAM PUF and provides a software solution of the noise of SRAM PUF to reduce the rate of false rejections for the real user and false acceptance for the not existing user.

AB - The main goal of narrating the password-management protocol is to reduce the prevalent attacks on cyber-physical systems such as the hacking of databases of User-ID-Password pairs and side-channel analysis. The architecture uses a hash function to hash the password and user ID has weakness can help to crack the password. So, the architecture utilizes both hash function and the Addressable Physical unclonable function (PUF) Generator (APG) to authenticate clients on the network without keeping the real format of passwords in the database. The hash function and APG together are more difficult to attack because they are unclonable, have a high level of randomness, and do not depend on storing information. This paper shows a simulation prototype for how the password manager protocol can work depending on the SHA-3-512 and SRAM PUF. Furthermore, the paper shows how to encrypt the database content of password manager by using the SRAM PUF and provides a software solution of the noise of SRAM PUF to reduce the rate of false rejections for the real user and false acceptance for the not existing user.

KW - Authentication

KW - Exist user

KW - Hash functions

KW - New user

KW - Password management

KW - Physical unclonable function

KW - SRAM PUF with password manager

UR - http://www.scopus.com/inward/record.url?scp=85088537363&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85088537363&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-52243-8_26

DO - 10.1007/978-3-030-52243-8_26

M3 - Conference contribution

AN - SCOPUS:85088537363

SN - 9783030522421

T3 - Advances in Intelligent Systems and Computing

SP - 361

EP - 379

BT - Intelligent Computing - Proceedings of the 2020 Computing Conference

A2 - Arai, Kohei

A2 - Kapoor, Supriya

A2 - Bhatia, Rahul

PB - Springer

T2 - Science and Information Conference, SAI 2020

Y2 - 16 July 2020 through 17 July 2020

ER -

Software Implementation of a SRAM PUF-Based Password Manager

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this