Print Email Facebook Twitter Open-Source Software-Based SRAM-PUF for Secure Data and Key Storage Using Off-The-Shelf SRAM Title Open-Source Software-Based SRAM-PUF for Secure Data and Key Storage Using Off-The-Shelf SRAM Author Setyawan Sajim, Ade (TU Delft Electrical Engineering, Mathematics and Computer Science) Contributor Pouwelse, Johan (mentor) Rellermeyer, Jan S. (mentor) Wong, Stephan (mentor) Akhundov, Haji (mentor) Degree granting institution Delft University of Technology Programme Computer Engineering | Distributed Systems Date 2018-05-17 Abstract SRAM PUF has a potential to become the main player in hardware security. Unfor- tunately, currently available solutions are usually locked to specific entities, such as companies or universities. Here, we introduce the first open source project to de- velop software-based SRAM PUF technology using off-the-shelf SRAM. We also present testing results on two off-the-shelf SRAMs quality to be a PUF compon- ent; Microchip 23LC1024 and Cypress CY62256NLL. Testing on two bit-selection algorithms (data remanence analysis and neighbor analysis) are also performed. Based on the testing results, we introduce a PUF enrollment scheme using data remanence analysis as the bit selection algorithm which will locate the location of the stable bits and SRAM Cypress CY62256NLL as the off-the-shelf SRAM. Moreover, we also propose a procedure to develop SRAM PUF-based applications using any off-the-shelf SRAM. The procedure consists of three main steps; test the off-the-shelf SRAM quality to be a PUF component, create a PUF-generated key using enrollment-reconstruction mechanism, and develop any PUF-based ap- plication utilizing the PUF-generated key. In addition, an idea to create numerous CRPs using SRAM PUF is also proposed here. Using a collection of stable bits as a challenge, the stable bits are permutated among themselves to create a challenge which has a numerous number of possibilities. Furthermore, we also present a secure data and key storage scheme using SRAM PUF. The proposed scheme is in- fluenced by multi-factor authentication. Using a combination of a PUF-generated key and user’s password, a derived key is produced and utilized as the final key to protect user’s data or/and user’s key. As the grand concluding experiment of this thesis, we present a demo of storing a private key of Bitcoin. We shows that the Bitcoin key will not be reconstructed successfully if user’s password is incorrect or the SRAM is not similar with the one that use to encrypt the Bitcoin key. Subject PUFSRAM PUFsecuritykey storagedata protection To reference this document use: http://resolver.tudelft.nl/uuid:4f879ecf-95d5-4482-8931-8c40abde0e79 Part of collection Student theses Document type master thesis Rights © 2018 Ade Setyawan Sajim Files PDF Ade_Setyawan_Sajim_thesis.pdf 4.69 MB Close viewer /islandora/object/uuid:4f879ecf-95d5-4482-8931-8c40abde0e79/datastream/OBJ/view