On the practical use of physical unclonable functions in oblivious transfer and bit commitment protocols

Rührmair, Ulrich; van Dijk, Marten

Author(s)

Rührmair, Ulrich; van Dijk, Marten

Download13389_2013_Article_52.pdf (265.1Kb)

PUBLISHER_POLICY

Terms of use

Article is made available in accordance with the publisher's policy and may be subject to US copyright law. Please refer to the publisher's site for terms of use.

Metadata

Show full item record

Abstract

In recent years, PUF-based schemes have been suggested not only for the basic tasks of tamper-sensitive key storage or the identification of hardware systems, but also for more complex protocols like oblivious transfer (OT) or bit commitment (BC), both of which possess broad and diverse applications. In this paper, we continue this line of research. We first present an attack on two recent OT and BC protocols which have been introduced by Brzuska et al. (CRYPTO, LNCS 6841, pp 51–70, Springer 2011). The attack quadratically reduces the number of CRPs which malicious players must read out to cheat, and fully operates within the original communication model of Brzuska et al. (CRYPTO, LNCS 6841, pp 51–70, Springer 2011). In practice, this leads to insecure protocols when electrical PUFs with a medium challenge-length are used (e.g., 64 bits), or whenever optical PUFs are employed. These two PUF types are currently among the most popular designs of so-called Strong PUFs. Secondly, we show that the same attack applies to a recent OT protocol of Ostrovsky et al. (IACR Cryptol. ePrint Arch. 2012:143, 2012), leading to exactly the same consequences. Finally, we discuss countermeasures. We present a new OT protocol with better security properties, which utilizes interactive hashing as a substep and is based on an earlier protocol by Rührmair (TRUST, LNCS 6101, pp 430–440, Springer 2010). We then closely analyze its properties, including its security, security amplification, and practicality.

Date issued

2013-03

URI

http://hdl.handle.net/1721.1/103985

Department

Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory

Journal

Journal of Cryptographic Engineering

Publisher

Springer-Verlag

Citation

Rührmair, Ulrich, and Marten van Dijk. “On the Practical Use of Physical Unclonable Functions in Oblivious Transfer and Bit Commitment Protocols.” J Cryptogr Eng 3, no. 1 (March 26, 2013): 17–28.

Version: Author's final manuscript

ISSN

2190-8508

2190-8516

Collections

MIT Open Access Articles

DSpace@MIT