TY - GEN
T1 - Strengthening Industrial IoT Security with Integrated PUF Token
AU - Jain, Saloni
AU - Korenda, Ashwija Reddy
AU - Bagri, Amisha
AU - Cambou, Bertrand
AU - Lucero, Chris D.
N1 - Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Switzerland AG 2024.
PY - 2024
Y1 - 2024
N2 - In the ever-evolving landscape of IoT device security, safeguarding data with confidentiality and integrity stands as a paramount concern. This paper introduces an optimized approach to generate one time use keys tailored for IoT devices, emphasizing higher reliability, reduced latency, and improved security. By integrating post quantum cryptographic (PQC) algorithms and leveraging a zero knowledge proof system (ZKPS) alongside physical unclonable functions (PUFs), our protocol utilizes SRAM PUFs to produce secure cryptographic keys. Through optimizations, we reduced the error to 0 to 5 bits while generating a PUF based 384 bit long keys, while also reducing latencies below 100 ms, thereby enhancing key generation efficiency for Industrial IoTs. To validate the robustness of our system, extensive testing was conducted to evaluate false acceptance and rejection rates, bit error rate, inter and intra PUF hamming distance and latency of key recovery. Moreover, our protocol is enhanced by error correction code (ECC) that handle keys of various lengths in order to improve security. Additionally, addressing hardware size constraints, we propose an innovative approach to package, SRAM PUF into compact tokens that can be integrated in commercially available industrial IoT without compromising security. Some of the important technologies implemented in this work include the enrollment of the SRAM with at least 200 cycles, the masking of the unstable cells, and schemes to optimize memory cell selection that enhance entropy, randomness, and reproducibility. Leveraging inherent noise to augment key randomness and integrating PQC like CRYSTAL-KYBER, our protocol presents a comprehensive framework for robust IoT device security, proficiently balancing efficiency, reliability, and cryptographic strength in safeguarding sensitive data transmission.
AB - In the ever-evolving landscape of IoT device security, safeguarding data with confidentiality and integrity stands as a paramount concern. This paper introduces an optimized approach to generate one time use keys tailored for IoT devices, emphasizing higher reliability, reduced latency, and improved security. By integrating post quantum cryptographic (PQC) algorithms and leveraging a zero knowledge proof system (ZKPS) alongside physical unclonable functions (PUFs), our protocol utilizes SRAM PUFs to produce secure cryptographic keys. Through optimizations, we reduced the error to 0 to 5 bits while generating a PUF based 384 bit long keys, while also reducing latencies below 100 ms, thereby enhancing key generation efficiency for Industrial IoTs. To validate the robustness of our system, extensive testing was conducted to evaluate false acceptance and rejection rates, bit error rate, inter and intra PUF hamming distance and latency of key recovery. Moreover, our protocol is enhanced by error correction code (ECC) that handle keys of various lengths in order to improve security. Additionally, addressing hardware size constraints, we propose an innovative approach to package, SRAM PUF into compact tokens that can be integrated in commercially available industrial IoT without compromising security. Some of the important technologies implemented in this work include the enrollment of the SRAM with at least 200 cycles, the masking of the unstable cells, and schemes to optimize memory cell selection that enhance entropy, randomness, and reproducibility. Leveraging inherent noise to augment key randomness and integrating PQC like CRYSTAL-KYBER, our protocol presents a comprehensive framework for robust IoT device security, proficiently balancing efficiency, reliability, and cryptographic strength in safeguarding sensitive data transmission.
KW - Cryptography
KW - Error Correction Code (ECC)
KW - Internet of Things (IoT)
KW - Key generation
KW - Key recovery
KW - One-Time-Use key
KW - Physical Unclonable Function (PUF)
KW - Post quantum encryption
KW - SRAM PUF
KW - Security
KW - Zero-knowledge proof
UR - http://www.scopus.com/inward/record.url?scp=85209542753&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85209542753&partnerID=8YFLogxK
U2 - 10.1007/978-3-031-73128-0_8
DO - 10.1007/978-3-031-73128-0_8
M3 - Conference contribution
AN - SCOPUS:85209542753
SN - 9783031731273
T3 - Lecture Notes in Networks and Systems
SP - 99
EP - 123
BT - Proceedings of the Future Technologies Conference (FTC) 2024
A2 - Arai, Kohei
PB - Springer Science and Business Media Deutschland GmbH
T2 - 9th Future Technologies Conference, FTC 2024
Y2 - 14 November 2024 through 15 November 2024
ER -