iTPM: Exploring PUF-based Keyless TPM for Security-by-Design of Smart Electronics

2023 IEEE Computer Society Annual Symposium on VLSI (ISVLSI) Pub Date : 2023-06-20 DOI:10.1109/ISVLSI59464.2023.10238586

Vishnu Bathalapalli, S. Mohanty, E. Kougianos, Vasanth Iyer, Bibhudutta Rout

{"title":"iTPM: Exploring PUF-based Keyless TPM for Security-by-Design of Smart Electronics","authors":"Vishnu Bathalapalli, S. Mohanty, E. Kougianos, Vasanth Iyer, Bibhudutta Rout","doi":"10.1109/ISVLSI59464.2023.10238586","DOIUrl":null,"url":null,"abstract":"The scope of Smart electronics and its increasing market worldwide has made cybersecurity an important challenge. The Security-by-Design (SbD) principle, an emerging cybersecurity area, focuses on building security/privacy-enabled primitives at the design stage of an electronic system. This paper proposes a novel Physical Unclonable Function (PUF) based Trusted Platform Module (TPM) for SbD primitive. The proposed SbD primitive works by performing secure verification of the PUF key using TPM’s Encryption and Decryption engine. The securely verified PUF Key is then bound to TPM using Platform Configuration Registers (PCR). PCRs in TPM facilitate a secure boot process and effective access control to TPM’s NonVolatile memory through an enhanced authorization policy. By binding PUF with PCR in TPM, a novel PUF-based access control policy can be defined, bringing in a new security ecosystem for the emerging Internet-of-Everything era. The proposed SbD approach has been experimentally validated by successfully integrating various PUF topologies with Hardware TPM.","PeriodicalId":199371,"journal":{"name":"2023 IEEE Computer Society Annual Symposium on VLSI (ISVLSI)","volume":"71 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-06-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 IEEE Computer Society Annual Symposium on VLSI (ISVLSI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISVLSI59464.2023.10238586","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The scope of Smart electronics and its increasing market worldwide has made cybersecurity an important challenge. The Security-by-Design (SbD) principle, an emerging cybersecurity area, focuses on building security/privacy-enabled primitives at the design stage of an electronic system. This paper proposes a novel Physical Unclonable Function (PUF) based Trusted Platform Module (TPM) for SbD primitive. The proposed SbD primitive works by performing secure verification of the PUF key using TPM’s Encryption and Decryption engine. The securely verified PUF Key is then bound to TPM using Platform Configuration Registers (PCR). PCRs in TPM facilitate a secure boot process and effective access control to TPM’s NonVolatile memory through an enhanced authorization policy. By binding PUF with PCR in TPM, a novel PUF-based access control policy can be defined, bringing in a new security ecosystem for the emerging Internet-of-Everything era. The proposed SbD approach has been experimentally validated by successfully integrating various PUF topologies with Hardware TPM.

查看原文本刊更多论文

iTPM:探索基于puf的智能电子安全设计的无钥匙TPM

智能电子产品的范围及其在全球范围内不断增长的市场使网络安全成为一个重要的挑战。基于设计的安全(SbD)原则是一个新兴的网络安全领域，其重点是在电子系统的设计阶段构建支持安全/隐私的原语。提出了一种基于物理不可克隆函数(PUF)的可信平台模块(TPM)。建议的SbD原语通过使用TPM的加密和解密引擎对PUF密钥执行安全验证来工作。然后使用平台配置寄存器(Platform Configuration Registers, PCR)将经过安全验证的PUF密钥绑定到TPM。TPM中的pcr通过增强的授权策略促进了安全引导过程和对TPM的非易失性内存的有效访问控制。通过在TPM中绑定PUF和PCR，可以定义一种新的基于PUF的访问控制策略，为新兴的万物互联时代带来新的安全生态系统。通过成功地将各种PUF拓扑与Hardware TPM集成，实验验证了所提出的SbD方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2023 IEEE Computer Society Annual Symposium on VLSI (ISVLSI)

自引率

0.00%

发文量