基于超晶格PUF的轻量级信息论安全密钥达成协议  

作　　者：解建国 刘晶[2] 吴涵 徐莉伟 陈小明[1] XIE Jian-Guo;LIU Jing;WU Han;XU Li-Wei;CHEN Xiao-Ming(Beijing Electronic Science and Technology Institute,Beijing 100070,China;Beijing University of Posts and Telecommunications,Beijing 100876,China;Wuhan Maritime Communications Research Institute,Wuhan 430205,China)

机构地区：[1]北京电子科技学院,北京100070 [2]北京邮电大学,北京100876 [3]武汉船舶通信研究所,武汉430205

出　　处：《密码学报（中英文）》2024年第2期387-402,共16页Journal of Cryptologic Research

基　　金：中央高校基本科研业务费(3282023007);国防基础科研计划(JCKY2019102C001)。

摘　　要：物理不可克隆函数(physicalunclonablefunction,PUF)是一种新型硬件安全原语,提取由器件制造过程中不可避免的随机差异作为密钥.超晶格PUF自提出以来,由于其良好的强PUF特性吸引了国内外诸多学者投入到超晶格随机数发生器和身份认证研究中.但是目前针对超晶格PUF的多方密钥达成协议研究仍然较少,尤其是面向轻量级设备场景.本文提出了一种基于超晶格PUF的轻量级密钥达成协议,阐述了从超晶格PUF派生密钥的方法,并提供信息论安全.通过引入可信第三方来实现持有超晶格PUF的终端设备的注册和会话密钥达成等功能.分析了该协议的攻击模型,证明了其信息论安全.最后在Cortex-A7平台进行实验验证,阐述了其效率和适用性.所提密钥达成协议专注于轻量级群组用户需求,对未来车联网、工业物联网等场景下的安全需求具有重要意义.Physical unclonable function(PUF)is a new type of hardware security primitive that extracts the inevitable random differences in the manufacturing process of the device as the key.Since the superlattice PUF was proposed, it has attracted many scholars to study random number generatorsand identity authentication protocols due to its strong PUF characteristics. However, there is littleresearch on the multi-party key agreement using superlattice PUF, especially with lightweight features.This paper proposes a lightweight key agreement protocol based on superlattice PUF which providesinformation-theoretic security. The protocol utilizes the fact that multiple keys can be derived fromsuperlattice PUF. By introducing a trusted third party, the functions such as registration and sessionkey agreement of terminal devices holding superlattice PUF are realized. Moreover, this paper analyzesthe attack model of the protocol and proves its information-theoretic security. Finally, a sampleimplementation on the Cortex-A7 platform shows the efficiency and applicability of the protocol. Thekey agreement scheme proposed in this paper focuses on lightweight group users, which is significantto the security requirements in future applications such as the Internet of Vehicles and the IndustrialInternet of Things.

关 键 词：密钥达成 物理不可克隆函数 协议 安全性分析 超晶格 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]