-
1.发明申请公开(公告)号:US20080314715A1
公开(公告)日:2008-12-25
申请号:US12097520
申请日:2006-11-29
IPC分类号: G07D7/00 , G06K19/067
CPC分类号: G07F7/12 , G06K19/0672 , G06K19/10 , G07D7/01 , G07F7/08
摘要: A security element comprises at least one oscillating circuit (O1-On) and a digital signature (2). Each oscillating circuit (O1-On) comprises a capacitor (C1-Cn) as resonance frequency setting element wherein the capacitor (C1-Cn) consists of two electrodes (8, 10) which are spaced apart from each other and a dielectric (9) that is sandwiched between the two electrodes (8, 10). The capacitor (C1-Cn) of each oscillating circuit has a random capacitance value which randomness is caused by a non-uniform thickness (d) of the dielectric (9) and/or by an inhomogeneous dielectric material. The digital signature (2) comprises reference values indicative for the resonance frequencies (f1-fh) of the oscillating circuits wherein the reference values are digitally signed with a secret key.
摘要翻译: 安全元件包括至少一个振荡电路(O1-On)和数字签名(2)。 每个振荡电路(O1-On)包括作为谐振频率设定元件的电容器(C1-Cn),其中电容器(C1-Cn)由彼此间隔开的两个电极(8,10)和电介质(9 )夹在两个电极(8,10)之间。 每个振荡电路的电容器(C1-Cn)具有由电介质(9)的不均匀厚度(d)和/或不均匀电介质材料引起的随机电容值。 数字签名(2)包括指示振荡电路的谐振频率(f1-fh)的参考值,其中参考值用秘密密钥进行数字签名。
-
公开(公告)号:US07554337B2
公开(公告)日:2009-06-30
申请号:US10557262
申请日:2004-05-17
申请人: Pim Theo Tuyls , Thomas Andreas Maria Kevenaar , Petra Elisabeth De Jongh , Robertus Adrianus Maria Wolters
发明人: Pim Theo Tuyls , Thomas Andreas Maria Kevenaar , Petra Elisabeth De Jongh , Robertus Adrianus Maria Wolters
CPC分类号: H01L23/544 , H01L23/576 , H01L2223/5444 , H01L2924/0002 , H01L2924/3011 , H01L2924/00
摘要: The semiconductor device of the invention includes a circuit and a protecting structure. It is provided with a first and a second security element and with an input and an output. The security elements have a first and a second impedance, respectively, which impedances differ. The device is further provided with a measuring unit a processing unit and a connection unit. The processing unit transform any first information received into a specific program of measurement. Herewith a challenge-response mechanism is implemented in the device.
摘要翻译: 本发明的半导体器件包括电路和保护结构。 它设置有第一和第二安全元件以及输入和输出。 安全元件分别具有阻抗不同的第一和第二阻抗。 该设备还具有测量单元,处理单元和连接单元。 处理单元将接收的任何第一信息转换成特定的测量程序。 因此,在设备中实现了挑战响应机制。
-
公开(公告)号:US08886951B2
公开(公告)日:2014-11-11
申请号:US11993724
申请日:2006-07-04
CPC分类号: G06F21/34 , G06F21/33 , G06F21/73 , G07C9/00007 , H04L9/321 , H04L9/3218 , H04L9/3221 , H04L9/3234 , H04L9/3278 , H04L2209/08 , H04L2209/805
摘要: The invention relates to a method for proving authenticity of a prover PRV to a verifier VER, the method comprising generating a secret S using a physical token by the prover PRV. Obtaining a public value PV by the verifier, where the public value PV has been derived from the secret S using a function for which the inverse of said function is computationally expensive. The method further comprising a step for conducting a zero knowledge protocol between the prover PRV and the verifier VER in order to prove to the verifier VER, with a pre-determined probability, that the prover PRV has access to the physical token, where the prover PRV makes use of the secret S and the verifier VER makes use of the public value PV. The invention further relates to a system employing the method, and an object for proving authenticity.
摘要翻译: 本发明涉及一种用于向验证者VER验证证明者PRV的真实性的方法,该方法包括使用证明者PRV使用物理令牌生成秘密S。 通过验证者获得公共价值PV,其中公共价值PV已经从秘密S导出,使用所述函数的倒数在计算上是昂贵的函数。 该方法还包括用于在证明者PRV和验证者VER之间进行零知识协议的步骤,以便以预先确定的概率向验证者VER证明证明者PRV可以访问物理令牌,其中证明者 PRV使用秘密S,验证者VER利用公共价值PV。 本发明还涉及采用该方法的系统和用于证明真实性的对象。
-
公开(公告)号:US08848477B2
公开(公告)日:2014-09-30
申请号:US13877656
申请日:2011-09-28
IPC分类号: G11C5/14
CPC分类号: G11C5/148 , G06F7/588 , G11C5/14 , G11C7/20 , G11C7/24 , H04L9/0866 , H04L9/3278
摘要: An electric physical unclonable function (PUF) (100) is provided comprising a semiconductor memory element (110) connectable to a PUF control means for reading content from the memory element and for deriving at least in part from said content a digital identifier, such as a secret key. Upon powering the memory element it settles into one of at least two different stable states. The particular stable state into which the memory element settles is dependent at least in part upon random physical characteristics of the memory element introduced during manufacture of the memory element. Settling of the memory element is further dependent upon a control input (112) of the memory element. The electric physical unclonable function comprises shielding means (142, 144) for shielding, during a time period including the power-up of the memory element and lasting at least until the settling of the memory element, the control input from receiving control signals upon which the particular stable state into which the memory element settles is dependent. In this way, the dependency of the memory element on its physical characteristics is improved, and dependency on possibly irreproducible control signals is reduced.
摘要翻译: 提供电物理不可克隆功能(PUF)(100),其包括可连接到PUF控制装置的半导体存储元件(110),用于从存储元件读取内容,并且至少部分地从所述内容导出数字标识符,诸如 秘密钥匙 在为存储器元件供电时,它稳定在至少两个不同的稳定状态之一中。 存储元件稳定的特定稳定状态至少部分地取决于在存储元件的制造期间引入的存储元件的随机物理特性。 存储器元件的稳定还取决于存储元件的控制输入(112)。 电物理不可克隆功能包括屏蔽装置(142,144),用于在包括存储元件的上电的持续时间期间屏蔽屏蔽装置,并持续至少直到存储元件的稳定,控制输入从其上接收控制信号 存储元件稳定的特定稳定状态是依赖的。 以这种方式,存储元件对其物理特性的依赖性得到改善,并且减少了可能不可再生的控制信号的依赖性。
-
5.发明授权公开(公告)号:US08694856B2
公开(公告)日:2014-04-08
申请号:US13390255
申请日:2010-08-06
申请人: Pim Theo Tuyls , Geert Jan Schrijen
发明人: Pim Theo Tuyls , Geert Jan Schrijen
IPC分类号: G11C29/00
CPC分类号: G06F21/73 , H04L9/002 , H04L9/0866 , H04L2209/805
摘要: Systems for generating an identifying response pattern comprising a memory (120) used as a physically unclonable function configured for generating a response pattern dependent on physical, at least partially random characteristics of said memory may be vulnerable to freezing attacks and to aging. A memory-overwriting device (110) configured for overwriting at least a first portion of the plurality of memory locations to obscure the response pattern in the memory avoids freezing attacks. An anti-degradation device (160) configured to write to each respective location of a second portion of the plurality of memory locations an inverse of a response previously read from the memory reduces the effects of aging.
摘要翻译: 用于生成识别响应模式的系统包括用作被配置用于生成依赖于所述存储器的物理,至少部分随机特性的响应模式的物理不可克隆功能的存储器(120),其易于受到冻结攻击和老化。 被配置为重写多个存储器位置的至少第一部分以遮蔽存储器中的响应模式的存储器重写设备(110)避免了冻结攻击。 一种抗劣化装置(160),被配置为写入多个存储器位置的第二部分的每个相应位置,先前从存储器读取的响应的反相减少了老化的影响。
-
公开(公告)号:US08433983B2
公开(公告)日:2013-04-30
申请号:US12067988
申请日:2006-09-11
IPC分类号: G06F11/00
CPC分类号: H04L9/3231 , H04L2209/08 , H04L2209/34
摘要: This invention relates to methods and devices for verifying the identity of a person based on a sequence of feature components extracted from a biometric sample. Thereafter, the feature components are quantized and assigned a data bit sequence in such a way that adjacent quantization intervals have a Hamming distance of 1. The data bit sequences are concatenated into a bit string, and said bit string is combined with a helper data set by using an exclusive disjunction (XOR) operation into a codeword. Finally, the codeword is decoded into a secret V and a secret S is matched with the secret V.
摘要翻译: 本发明涉及用于基于从生物特征样本提取的特征成分序列来验证个人身份的方法和装置。 此后,对特征分量进行量化并分配数据比特序列,使得相邻量化间隔的汉明距离为1.数据比特序列被连接成比特串,并且所述比特串与辅助数据组合 通过对代码字使用独占分离(XOR)操作。 最后,码字被解码为秘密V,秘密S与秘密V匹配。
-
公开(公告)号:US20130051552A1
公开(公告)日:2013-02-28
申请号:US13574311
申请日:2011-01-19
申请人: Héléna Handschuh , Pim Theo Tuyls
发明人: Héléna Handschuh , Pim Theo Tuyls
IPC分类号: H04L9/14
CPC分类号: G06F21/602 , H04L9/0866 , H04L9/0897 , H04L9/3033 , H04L2209/34 , H04L2209/805
摘要: A computing device for obtaining a first cryptographic key during an enrollment phase, the computing device comprising a key generator for generating the first cryptographic key in dependence upon a seed, the computing device being configured for storing the first cryptographic key on a storage of the computing device for later cryptographic use of the first cryptographic key on the computing device during a usage phase coming after the enrollment phase wherein, the computing device further comprises a physically unclonable function, the key generator being configured for deriving the seed from an output of the physically unclonable function, and an encryption module for encrypting the first cryptographic key using a second cryptographic key derived from the output of the physically unclonable function, the computing device being configured for storing the first cryptographic key on the storage in encrypted form.
摘要翻译: 一种用于在注册阶段期间获得第一密码密钥的计算设备,所述计算设备包括密钥生成器,用于根据种子生成所述第一密码密钥,所述计算设备被配置为将所述第一密码密钥存储在所述计算 用于在注册阶段之后的使用阶段期间在计算设备上稍后加密使用第一加密密钥的设备,其中,所述计算设备还包括物理上不可克隆的功能,所述密钥生成器被配置用于从物理的输出中导出种子 不可克隆功能,以及加密模块,用于使用从物理不可克隆功能的输出导出的第二加密密钥来加密第一加密密钥,该计算设备被配置为以加密的形式将第一加密密钥存储在存储器上。
-
8.发明申请公开(公告)号:US20120179952A1
公开(公告)日:2012-07-12
申请号:US13390255
申请日:2010-08-06
申请人: Pim Theo Tuyls , Geert Jan Schrijen
发明人: Pim Theo Tuyls , Geert Jan Schrijen
CPC分类号: G06F21/73 , H04L9/002 , H04L9/0866 , H04L2209/805
摘要: Systems for generating an identifying response pattern comprising a memory (120) used as a physically unclonable function configured for generating a response pattern dependent on physical, at least partially random characteristics of said memory may be vulnerable to freezing attacks and to aging. A memory-overwriting device (110) configured for overwriting at least a first portion of the plurality of memory locations to obscure the response pattern in the memory avoids freezing attacks. An anti-degradation device (160) configured to write to each respective location of a second portion of the plurality of memory locations an inverse of a response previously read from the memory reduces the effects of aging.
摘要翻译: 用于生成识别响应模式的系统包括用作被配置用于生成依赖于所述存储器的物理,至少部分随机特性的响应模式的物理不可克隆功能的存储器(120),其易于受到冻结攻击和老化。 被配置为重写多个存储器位置的至少第一部分以遮蔽存储器中的响应模式的存储器重写设备(110)避免了冻结攻击。 一种抗劣化装置(160),被配置为写入多个存储器位置的第二部分的每个相应位置,先前从存储器读取的响应的反相减少了老化的影响。
-
公开(公告)号:US07898648B2
公开(公告)日:2011-03-01
申请号:US11721389
申请日:2005-12-12
CPC分类号: H04L9/3278 , G07D7/0032
摘要: The invention relates to an optical identifier (30) for generating an identification signal in response to an incident radiation beam (12), and to a corresponding method. In order to provide an optical identifier (30) which can be produced by a simplified process and which has nevertheless a sufficient or even improved stability against environmental interferences it is proposed that said identifier comprises a carrier layer (32), at least partially transparent to said radiation beam (12), having a first scattering face (34) comprising a plurality of randomly oriented partial faces for scattering at least a part of said radiation beam (12), wherein said identification signal is formed by a scattered part of said radiation beam (12). Further, a device comprising said identifier, and a reading apparatus for identifying the identifier are proposed.
摘要翻译: 本发明涉及一种用于响应于入射辐射束(12)产生识别信号的光学标识符(30)以及相应的方法。 为了提供可以通过简化的过程产生并且仍然具有足够或甚至改善的对环境干扰的稳定性的光学标识符(30),建议所述标识符包括载体层(32),至少部分地透明到 所述辐射束(12)具有包括多个随机取向的部分面的第一散射面(34),用于散射所述辐射束(12)的至少一部分,其中所述识别信号由所述辐射的散射部分形成 梁(12)。 此外,提出了包括所述标识符的装置和用于识别标识符的读取装置。
-
公开(公告)号:US20090282259A1
公开(公告)日:2009-11-12
申请号:US12296682
申请日:2007-04-10
CPC分类号: G06Q20/388 , G06F21/35 , G06F2221/2103 , G06Q20/341 , G06Q20/40975 , G07F7/1008 , H04L9/3234 , H04L9/3278 , H04L2209/08 , H04L2209/12 , H04L2209/805
摘要: The present invention relates to a method of authenticating, at a verifier (210), a device (101, 201) comprising a physical token (102), a system for performing authentication and a device comprising a physical token which provides measurable parameters. A basic idea of the present invention is to provide a secure authentication protocol in which a low-power device (101, 201), for example an RFID tag, comprising a physical token (102) in the form of a physical uncloneable function (PUF) is relieved from performing cryptographic operations or other demanding operations in terms of processing power. To this end, a PUF device (101, 201) to be authenticated verifies if it in fact is being queried by an authorized verifier. For instance, an RFID tag comprising a PUF (102) may be arranged in a banknote which a bank wishes to authenticate. This verification is based on the bank's unique ability to reveal concealed data, such as data having been created in an enrolment phase at which the RFID tag (or actually the PUF) was registered with the bank. Now, the RFID tag again challenges its PUF to create response data sent to the verifier. The verifier checks whether the response data is correct and, if so, authenticates the device comprising the physical token, since the device is able to produce response data that corresponds to response data concealed and stored in the enrolment phase.
摘要翻译: 本发明涉及一种在验证器(210)处认证包括物理令牌(102)的设备(101,201),用于执行认证的系统和包括提供可测量参数的物理令牌的设备的方法。 本发明的基本思想是提供一种安全认证协议,其中低功率设备(101,201),例如RFID标签,其包括物理不可克隆功能(PUF)形式的物理令牌(102) )在处理能力方面没有进行密码操作或其他苛刻的操作。 为此,将被认证的PUF设备(101,201)验证其实际上是否被授权验证者查询。 例如,包括PUF(102)的RFID标签可以布置在银行希望认证的钞票中。 这种验证是基于银行揭露隐藏数据的独特能力,例如在RFID标签(或实际上是PUF)在银行注册的注册阶段创建的数据。 现在,RFID标签再次挑战其PUF来创建发送给验证者的响应数据。 验证者检查响应数据是否正确,如果是,则认证包括物理令牌的设备,因为该设备能够产生对应于隐藏并存储在注册阶段中的响应数据的响应数据。
-
-
-
-
-
-
-
-
-
搜索结果
70 条记录 (耗时 0.04 秒)
