PDAKE: A Provably Secure PUF-Based Device Authenticated Key Exchange in Cloud Setting

Jin Wook Byun

doi:10.1109/ACCESS.2019.2957742

IEEE Access (Jan 2019)

PDAKE: A Provably Secure PUF-Based Device Authenticated Key Exchange in Cloud Setting

Jin Wook Byun

Affiliations

Jin Wook Byun: ORCiD; Department of Information and Communication, Pyeongtaek University, Pyeongtaek, South Korea

DOI: https://doi.org/10.1109/ACCESS.2019.2957742
Journal volume & issue: Vol. 7
pp. 181165 – 181177

Abstract

Read online

In this paper, we study on how to construct an authenticated key exchange protocol in a device based authentication setting where an user who has a PUF-based device and its multi-factor authenticators desires to mutually authenticate a server. Generally, in a secure multi-factor authentication schemes, any adversary cannot impersonates a valid users unless A fully corrupts all multi-factor authenticators. However, in recent PUF-based device authenticated key exchange schemes, we observe a new impersonation attack that any adversary with only PUF's output is always able to impersonate any user. We first analyze how recent schemes are vulnerable against the new attack. Then we build a secure PUF-based device authenticated key exchange (PDAKE) with provable result. Since in our PDAE, user's device is an important authenticator, it is well applicable to establish a secure channel in multi-factor based FIDO (fast identification online) or cloud setting service like storage and e-mail services.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords