Apparatus and method for authentication between devices based on PUF over machine-to-machine communications
First Claim
Patent Images
1. A terminal device that performs machine-to-machine (M2M) communication, the terminal device comprising:
- a secret key module to provide a secret key for transferring a public key, using a secret key encryption scheme, the public key being used for communication of the terminal device using a public key encryption scheme;
a private key module to provide a private key for generating the public key, wherein at least one of the secret key module and the private keymodule includes a physical unclonable function (PUF); and
a fuse unit configured to block a path via which the secret key isextracted, wherein the PUF includes at least one via disposed between two metal layers, the via having a first size smaller than a second size specified by a design rule.
1 Assignment
0 Petitions
Accused Products
Abstract
Terminal devices that perform machine-to-machine (M2M) communication may autonomously perform password authentication by autonomously generating a personal identity number (PIN) value, which is not exposed externally, using a physical unclonable function (PUF). A terminal apparatus that performs M2M communication may include a PUF embedded in the terminal apparatus to generate an authentication key for password authentication associated with the terminal apparatus, and an authentication unit to perform the password authentication associated with the terminal apparatus using the authentication key generated by the PUF.
25 Citations
11 Claims
-
1. A terminal device that performs machine-to-machine (M2M) communication, the terminal device comprising:
-
a secret key module to provide a secret key for transferring a public key, using a secret key encryption scheme, the public key being used for communication of the terminal device using a public key encryption scheme; a private key module to provide a private key for generating the public key, wherein at least one of the secret key module and the private key module includes a physical unclonable function (PUF); and
a fuse unit configured to block a path via which the secret key isextracted, wherein the PUF includes at least one via disposed between two metal layers, the via having a first size smaller than a second size specified by a design rule. - View Dependent Claims (2, 3, 4, 5, 6, 11)
-
-
7. A method of performing, by a terminal device, security authentication in order to perform machine-to-machine (M2M) communication, the method comprising:
-
generating, by the terminal device, a private key of the terminal device using a first physical unclonable function (PUF) embedded in the terminal device; generating, by the terminal device, a public key for performing password authentication using the private key; generating a secret key for transferring the public key externally using a secret key encryption scheme; blocking a path via which the secret key is extracted, using a fuse; and performing the password authentication with an external terminal other than the terminal device or an external certification authority (CA) using the public key, wherein the first PUF includes at least one via disposed between two metal layers, the via having a first size smaller than a second size specified by a design rule. - View Dependent Claims (8, 9, 10)
exchanging the public key with the external CA based on a secret key encryption scheme using the secret key.
-
-
9. The method of claim 7, further comprising:
-
receiving, from the external CA, a message encrypted using a public key encryption scheme; decrypting the encrypted message using a pre-stored public key of the external CA; and completing security authentication with the external CA when a serial number of the terminal device is verified from the decrypted message.
-
-
10. The method of claim 8, further comprising:
- blocking the fuse after a serial number of the terminal device is stored in a serial number storage and the secret key is initially extracted.
Specification