Physical Unclonable Function Based Authentication Scheme for Smart Devices in Internet of Things

Abstract

Internet of Things (IoT) comprises of huge number of connected smart devices to exchange sensed data across different networks. With the rapid growth in security applications development, Physical Unclonable Functions (PUF) has gain interest of researchers. PUF exploits the random factors of IC manufacturing process to generate a variety of mismatches. It helps to generate different unique challenge-response pairs to store in repository and then use for secure associations between the smart devices in IoT. Memory based and Analog electronic based PUFs are mostly used for providing dependable security where MOS transistors based PUF achieve a large variety of mismatches with smaller sizes as compared to others. This paper presents a PUF based Authentication Scheme (PAS) along session keying in order to ensure the secure interaction among smart devices in IoT. We have also proposed the registration and authentication mechanism along with session keying based on challenge-response pair. Next, we present the secure command execution protocol among requesting devices, gateway and smart devices. To validate our work, we have setup a testbed and compared the existing schemes with our proposed PAS in terms of communication overhead during authentication and resilience against device capturing. Results ensure the supremacy of proposed approach over the counterparts.