tPUF-Based Security Access Scheme for IoT Devices

doi:10.3778/j.issn.1002-8331.1912-0432

Abstract

Abstract:

Aiming at the problem that the existing IoT device secure access scheme is not applicable to resource-constrained IoT devices, a tPUF-based IoT device secure access scheme is proposed. Utilizing Physical Unclonable Function（PUF）, IoT devices do not need to store any secret information, enabling mutual authentication between the device and the authenticator, and negotiating session keys. It utilizes Trusted Network Connect（TNC） technology to achieve identity authentication, platform identity authentication, and integrity authentication of IoT devices from the authentication end. Security analysis shows that the scheme can effectively resist tampering, replication, and physical attacks. Experimental results show that, compared with other schemes, this scheme significantly reduces the equipment resource overhead.

Key words: Internet of Things, physical unclonable function, trusted network connection, mutual authentication, device security access

摘要：

针对现有的物联网设备安全接入方案不适用于资源受限的物联网设备的问题，提出一种基于tPUF的物联网设备安全接入方案。利用物理不可克隆函数技术（Physical Unclonable Function，PUF），物联网设备不需要存储任何秘密信息，实现设备与认证端的双向认证以及协商会话秘钥；利用可信网络连接技术（Trusted Network Connect，TNC），完成认证端对物联网设备的身份认证、平台身份认证、完整性认证。安全性分析表明，方案能够有效抵抗篡改、复制、物理攻击等。实验结果表明，相较于其他方案，该方案明显降低了设备的资源开销。

关键词: 物联网, 物理不可克隆函数, 可信网络连接, 双向认证, 设备安全接入

ZOU Jianwen, ZHAO Bo, LI Xiang, LIU Yifan, LI Jiayue. tPUF-Based Security Access Scheme for IoT Devices[J]. Computer Engineering and Applications, 2021, 57(2): 119-126.

邹建文，赵波，李想，刘一凡，黎佳玥. 基于tPUF的物联网设备安全接入方案[J]. 计算机工程与应用, 2021, 57(2): 119-126.

[1]	WANG Zhendong, ZHANG Lin, LI Dahai. Survey of Intrusion Detection Systems for Internet of Things Based on Machine Learning [J]. Computer Engineering and Applications, 2021, 57(4): 18-27.
[2]	LI Tianming, YAN Xiang, ZHANG Zengnian, TIAN Yang, WU Xin, LI Chaoqun. Application Research of Blockchain + Internet of Things in Agricultural Product Traceability [J]. Computer Engineering and Applications, 2021, 57(23): 50-60.
[3]	WANG Xiaoguang, YANG Peibei. Design and Effect Analysis of Digital Transformation of Shipping Logistics Enterprises [J]. Computer Engineering and Applications, 2021, 57(21): 241-247.
[4]	YANG Shu, SU Fang. Distributed Data Security Integrated Application System Based on Microservices [J]. Computer Engineering and Applications, 2021, 57(18): 238-247.
[5]	CHEN Feihong, ZHANG Feng, CHEN Junning, WU Xiulong. Lightweight RFID Authentication Protocol Based on RRAM PUF [J]. Computer Engineering and Applications, 2021, 57(1): 141-149.
[6]	ZHEN Kaicheng, HUANG He, SONG Liangtu. Internet of Things Data Injection System Based on Netty and Kafka [J]. Computer Engineering and Applications, 2020, 56(5): 135-140.
[7]	ZHANG Sen, YE Jian, LI Guogang. Research and Implementation of Blockchain Technology Scheme for Cold Chain Logistics [J]. Computer Engineering and Applications, 2020, 56(3): 19-27.
[8]	MEI Songqing, DENG Xiaoru. Ultra-Lightweight Mobile RFID Authentication Protocol for Bit Replacement Operations [J]. Computer Engineering and Applications, 2020, 56(3): 100-105.
[9]	CAI Qingsong，LIN Jia. Research on Dynamic Selection Method of End Parameter for Improving LoRa Network Performance [J]. Computer Engineering and Applications, 2020, 56(3): 113-120.
[10]	XIANG Min, DAI Keyu, ZHOU En, LIU Yu, LEI Rujie. Scheduling Strategy for IoT Terminals Considering Task Relevance [J]. Computer Engineering and Applications, 2020, 56(23): 95-102.
[11]	TU Jingke, LIANG Junbin, JIANG Chan, WANG Tianshu. Research Progress of Mobile Internet of Things Monitoring in Large-Scale Acyclic Directed Pipe Network [J]. Computer Engineering and Applications, 2020, 56(17): 1-11.
[12]	SHI Feng, LIANG Shangbin, JIANG Yong, YAN Liping, XU Jianjun, GUO Xiaodong. Research and Practice on Edge Computing of Oilfield Internet of Things System [J]. Computer Engineering and Applications, 2020, 56(16): 273-278.
[13]	JIANG Lingyan1, WANG Xiaoguang2. Risk Prevention of Repetitive Pledge Under Internet of Things [J]. Computer Engineering and Applications, 2019, 55(9): 223-229.
[14]	ZHOU Yuxuan1, YANG Xu1，2, BAO Fucheng1, ZHU Yifeng1，2, DUAN Jin1，2. Cordova-NodeJS Hybrid IOT Information Service System [J]. Computer Engineering and Applications, 2019, 55(6): 209-217.
[15]	WANG Pengran, REN Jianji. Computation Offloading Optimization of Federated Learning in Dynamic Internet of Things Environment [J]. Computer Engineering and Applications, 2019, 55(16): 157-164.

tPUF-Based Security Access Scheme for IoT Devices

基于tPUF的物联网设备安全接入方案

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics