Apparatus and method for authentication between devices based on PUF over machine-to-machine communications
First Claim
Patent Images
1. A terminal device that performs machine-to-machine (M2M) communication, the terminal device comprising:
- a secret key module to provide a secret key for transferring a public key, using a secret key encryption scheme, the public key being used for communication of the terminal device using a public key encryption scheme;
a private key module to provide a private key for generating the public key, wherein at least one of the secret key module and the private keymodule includes a physical unclonable function (PUF); and
a fuse unit configured to block a path via which the secret key isextracted, wherein the PUF includes at least one via disposed between two metal layers, the via having a first size smaller than a second size specified by a design rule.
1 Assignment
0 Petitions
Accused Products
Abstract
Terminal devices that perform machine-to-machine (M2M) communication may autonomously perform password authentication by autonomously generating a personal identity number (PIN) value, which is not exposed externally, using a physical unclonable function (PUF). A terminal apparatus that performs M2M communication may include a PUF embedded in the terminal apparatus to generate an authentication key for password authentication associated with the terminal apparatus, and an authentication unit to perform the password authentication associated with the terminal apparatus using the authentication key generated by the PUF.
25 Citations
11 Claims
-
1. A terminal device that performs machine-to-machine (M2M) communication, the terminal device comprising:
-
a secret key module to provide a secret key for transferring a public key, using a secret key encryption scheme, the public key being used for communication of the terminal device using a public key encryption scheme; a private key module to provide a private key for generating the public key, wherein at least one of the secret key module and the private key module includes a physical unclonable function (PUF); and
a fuse unit configured to block a path via which the secret key isextracted, wherein the PUF includes at least one via disposed between two metal layers, the via having a first size smaller than a second size specified by a design rule. - View Dependent Claims (2, 3, 4, 5, 6, 11)
-
-
7. A method of performing, by a terminal device, security authentication in order to perform machine-to-machine (M2M) communication, the method comprising:
-
generating, by the terminal device, a private key of the terminal device using a first physical unclonable function (PUF) embedded in the terminal device; generating, by the terminal device, a public key for performing password authentication using the private key; generating a secret key for transferring the public key externally using a secret key encryption scheme; blocking a path via which the secret key is extracted, using a fuse; and performing the password authentication with an external terminal other than the terminal device or an external certification authority (CA) using the public key, wherein the first PUF includes at least one via disposed between two metal layers, the via having a first size smaller than a second size specified by a design rule. - View Dependent Claims (8, 9, 10)
exchanging the public key with the external CA based on a secret key encryption scheme using the secret key.
-
-
9. The method of claim 7, further comprising:
-
receiving, from the external CA, a message encrypted using a public key encryption scheme; decrypting the encrypted message using a pre-stored public key of the external CA; and completing security authentication with the external CA when a serial number of the terminal device is verified from the decrypted message.
-
-
10. The method of claim 8, further comprising:
- blocking the fuse after a serial number of the terminal device is stored in a serial number storage and the secret key is initially extracted.
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeICTK Holdings Co., Ltd.
-
Original AssigneeICTK Co., Ltd. (Bureau Veritas SA)
-
InventorsKim, Dong Kyue, Choi, Byong Deok, Kim, Dong Hyun, Park, Sang Seon, Jee, Kwang Hyun, Jin, Bong Jae
-
Primary Examiner(s)Brown, Anthony
-
Assistant Examiner(s)Corum, Jr., William
-
Application NumberUS14/238,946Publication NumberTime in Patent Office1,881 DaysField of SearchUS Class CurrentCPC Class CodesG06F 21/34 involving the use of extern...G06F 21/445 by mutual authentication, e...G06F 21/72 in cryptographic circuitsG06F 21/73 by creating or determining ...G06F 21/85 interconnection devices, e....G06F 2221/2103 Challenge-responseG06F 2221/2107 File encryptionG09C 1/00 Apparatus or methods whereb...H04L 2209/12 Details relating to cryptog...H04L 63/083 using passwords cryptograph...H04L 63/0876 based on the identity of th...H04L 9/0866 involving user or device id...H04L 9/321 involving a third party or ...H04L 9/3226 using a predetermined code,...H04L 9/3278 using physically unclonable...H04W 4/70 Services for machine-to-mac...
