Computer-assisted machine-to-human protocols for authentication of a RAM-based embedded system

Abdourhamane Idrissa; Alain Aubert; Thierry Fournel

doi:10.1117/12.922364

8 May 2012 Computer-assisted machine-to-human protocols for authentication of a RAM-based embedded system

Abdourhamane Idrissa, Alain Aubert, Thierry Fournel

Proceedings Volume 8406, Mobile Multimedia/Image Processing, Security, and Applications 2012; 84060U (2012) https://doi.org/10.1117/12.922364
Event: SPIE Defense, Security, and Sensing, 2012, Baltimore, Maryland, United States

Abstract

Mobile readers used for optical identification of manufactured products can be tampered in different ways: with hardware Trojan or by powering up with fake configuration data. How a human verifier can authenticate the reader to be handled for goods verification? In this paper, two cryptographic protocols are proposed to achieve the verification of a RAM-based system through a trusted auxiliary machine. Such a system is assumed to be composed of a RAM memory and a secure block (in practice a FPGA or a configurable microcontroller). The system is connected to an input/output interface and contains a Non Volatile Memory where the configuration data are stored. Here, except the secure block, all the blocks are exposed to attacks. At the registration stage of the first protocol, the MAC of both the secret and the configuration data, denoted M₀ is computed by the mobile device without saving it then transmitted to the user in a secure environment. At the verification stage, the reader which is challenged with nonces sendsMACs / HMACs of both nonces and MAC M₀ (to be recomputed), keyed with the secret. These responses are verified by the user through a trusted auxiliary MAC computer unit. Here the verifier does not need to tract a (long) list of challenge / response pairs. This makes the protocol tractable for a human verifier as its participation in the authentication process is increased. In counterpart the secret has to be shared with the auxiliary unit. This constraint is relaxed in a second protocol directly derived from Fiat-Shamir's scheme.

Citation Download Citation

Abdourhamane Idrissa, Alain Aubert, and Thierry Fournel "Computer-assisted machine-to-human protocols for authentication of a RAM-based embedded system", Proc. SPIE 8406, Mobile Multimedia/Image Processing, Security, and Applications 2012, 84060U (8 May 2012); https://doi.org/10.1117/12.922364

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
7 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Embedded systems

Field programmable gate arrays

Microcontrollers

Computing systems

Logic

Binary data

Optics manufacturing

Show All Keywords

Keywords/Phrases

Search In:

Publication Years