[go: up one dir, main page]

CN104658601A - PUF (physically unclonable function) authentication method based on STT-RAM (spin-torque transfer RAM) storage unit error rate distribution - Google Patents

PUF (physically unclonable function) authentication method based on STT-RAM (spin-torque transfer RAM) storage unit error rate distribution Download PDF

Info

Publication number
CN104658601A
CN104658601A CN201510031305.3A CN201510031305A CN104658601A CN 104658601 A CN104658601 A CN 104658601A CN 201510031305 A CN201510031305 A CN 201510031305A CN 104658601 A CN104658601 A CN 104658601A
Authority
CN
China
Prior art keywords
edp
addr
sec
authentication method
counter
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201510031305.3A
Other languages
Chinese (zh)
Other versions
CN104658601B (en
Inventor
张宪
孙广宇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Peking University
Original Assignee
Peking University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Peking University filed Critical Peking University
Priority to CN201510031305.3A priority Critical patent/CN104658601B/en
Publication of CN104658601A publication Critical patent/CN104658601A/en
Application granted granted Critical
Publication of CN104658601B publication Critical patent/CN104658601B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Storage Device Security (AREA)

Abstract

本发明公布了一种利用自旋矩传输随机读写器(STT-RAM)存储单元错误率分布的物理不可克隆认证方法,包括预处理阶段、注册阶段和验证阶段,包括步骤:首先在预处理阶段记录STT-RAM阵列中所有EDP的位置,然后在注册阶段输入若干EDP位置,芯片电路利用这些EDP内两个单元错误率相对大小来输出参考输出,在验证阶段再次重现注册阶段,最后根据验证阶段和注册阶段的输出验证给定设备与注册阶段的设备是否相同,从而认证芯片真假。本发明提供方法在很小的硬件代价以及时间代价下,解决设备认证的问题,提高认证的可靠性。

The invention discloses a physical non-clonable authentication method using the error rate distribution of the storage unit of the spin torque transfer random reader (STT-RAM), including a preprocessing stage, a registration stage and a verification stage, including the steps: first in the preprocessing The stage records the positions of all EDPs in the STT-RAM array, and then inputs a number of EDP positions in the registration stage. The chip circuit uses the relative size of the two cell error rates in these EDPs to output a reference output, and reproduces the registration stage again in the verification stage. Finally, according to The output of the verification phase and the registration phase verifies whether the given device is the same as the device in the registration phase, thereby authenticating the authenticity of the chip. The method provided by the invention solves the problem of equipment authentication and improves the reliability of authentication at a small hardware cost and time cost.

Description

基于STT-RAM存储单元错误率分布的PUF认证方法PUF authentication method based on error rate distribution of STT-RAM storage unit

技术领域technical field

本发明属于信息安全领域,涉及一种物理不可克隆(PUF)认证方法,尤其涉及一种基于STT-RAM存储单元错误率分布的物理不可克隆认证方法。The invention belongs to the field of information security and relates to a physical unclonable (PUF) authentication method, in particular to a physical unclonable authentication method based on the error rate distribution of STT-RAM storage units.

背景技术Background technique

自旋矩传输随机读写器(STT-RAM)是一种新型非易失(Non-volatile)存储器。STT-RAM被认为是未来SRAM的替代品之一,拥有高密度,低静态功耗,低访存时间等优点。与此同时,物理不可克隆技术(PUF)正被广泛建议应用于设备认证,而其他非易失性存储已经被提出用于制作PUF,但是普遍存在硬件开销大或者延迟高等问题。Spin torque transfer random reader (STT-RAM) is a new type of non-volatile (Non-volatile) memory. STT-RAM is considered to be one of the future SRAM substitutes, with the advantages of high density, low static power consumption, and low memory access time. At the same time, physical unclonable technology (PUF) is being widely suggested for device authentication, and other non-volatile storage has been proposed for making PUF, but there are generally problems such as high hardware overhead or high latency.

2011年,美国的Prabhu等人提出利用NAND Flash来进行设备认证。他们首先提取Flash中每个比特对干扰错误(disturb error)的敏感程度,编程延迟等等,然后计算相关系数的办法来区分和认证芯片。这种办法延迟长(15s),且环境影响下可能会失效。In 2011, Prabhu et al. in the United States proposed to use NAND Flash for device authentication. They first extract the sensitivity of each bit in Flash to disturbance errors, programming delays, etc., and then calculate the correlation coefficient to distinguish and authenticate chips. This method has a long delay (15s), and may fail under environmental influence.

2012年,美国的Rajendran等人提出利用忆阻器(Memristor)来进行设备认证。他们首先用感应器(sensor)采集每个单元节点的电压,然后利用电压信息进行认证芯片。这种办法由于需要使用感应器采集每个节点电压,额外电路开销较大,并且环境变化也会影响稳定性。In 2012, Rajendran et al. in the United States proposed to use Memristor for device authentication. They first use a sensor to collect the voltage of each unit node, and then use the voltage information to authenticate the chip. Because this method needs to use sensors to collect the voltage of each node, the additional circuit overhead is relatively large, and environmental changes will also affect stability.

发明内容Contents of the invention

为了克服上述现有技术的不足,本发明提供一种利用自旋矩传输随机读写器(STT-RAM)存储单元错误率分布的物理不可克隆认证方法,在很小的硬件代价以及时间代价下,解决设备认证的问题,提高认证的可靠性。In order to overcome the deficiencies of the above-mentioned prior art, the present invention provides a physical non-clonable authentication method using the error rate distribution of the storage unit of the spin torque transfer random reader (STT-RAM), at a very small hardware cost and time cost , solve the problem of equipment authentication, and improve the reliability of authentication.

本文定义如下术语:This document defines the following terms:

(1)Error-Least-State:表示本发明工作环境中,STT-RAM单元错误率最低的环境。例如,在工作电压0.9V-1.1V、工作温度275K-325K的环境下,Error-Least-State表示最高工作电压、最低工作温度的环境,即(1.1V,275K)的环境。(1) Error-Least-State: Indicates the environment in which the error rate of the STT-RAM unit is the lowest in the working environment of the present invention. For example, in an environment with an operating voltage of 0.9V-1.1V and an operating temperature of 275K-325K, Error-Least-State indicates an environment with the highest operating voltage and the lowest operating temperature, that is, an environment of (1.1V, 275K).

(2)Error-Most-State:表示本发明工作环境中,STT-RAM单元错误率最高的环境。例如,在工作电压0.9V-1.1V、工作温度275K-325K环境下,Error-Most-State表示最低工作电压、最高工作温度的环境,即(0.9V,325K)的环境。(2) Error-Most-State: Indicates the environment in which the error rate of the STT-RAM unit is the highest in the working environment of the present invention. For example, in an environment with an operating voltage of 0.9V-1.1V and an operating temperature of 275K-325K, Error-Most-State indicates an environment with the lowest operating voltage and the highest operating temperature, that is, the environment of (0.9V, 325K).

(3)RWR测试:即读写读测试,是一种检测单元错误率的方法。该方法首先读取单元数据,反转数据后写回,再读出数据检测数据是否成功改变来检测读写错误。(3) RWR test: that is, read and write read test, which is a method to detect the error rate of the unit. This method first reads unit data, inverts the data and writes it back, and then reads out the data to detect whether the data has changed successfully to detect read and write errors.

(4)EDP:即错误率差分对(Error-rate Differential Pair),表示STT-RAM阵列中满足下列关系的两个相邻单元:在N轮RWR测试中,两个单元发生错误的次数之差大于等于一给定次数Nth。通过对1MB大小1T1J的STT-RAM存储阵列进行仿真实验,证明N和Nth的取值应该满足N=Nth>=3,本发明实施例中N=Nth=3。(4) EDP: Error-rate Differential Pair (Error-rate Differential Pair), indicating two adjacent units in the STT-RAM array that satisfy the following relationship: In N rounds of RWR tests, the difference between the number of errors that occur between the two units greater than or equal to a given number of times N th . Through the simulation experiment of the STT-RAM storage array with a size of 1MB and 1T1J, it is proved that the values of N and Nth should satisfy N= Nth >=3, and N= Nth =3 in the embodiment of the present invention.

本发明的原理是,本发明基于STT-RAM存储单元错误率分布的物理不可克隆认证方法包括三个阶段:预处理阶段、注册阶段和验证阶段。首先在预处理阶段(Pre-process)记录STT-RAM阵列中所有EDP的位置,然后在注册阶段(Enrollment Phase)输入多个EDP位置,芯片电路利用这些EDP内两个单元错误率相对大小来输出参考输出(Reference Response),在验证阶段(Evaluation Phase)再次重现注册阶段,最后根据验证阶段和注册阶段的输出判断芯片的真假。The principle of the present invention is that the physical unclonable authentication method based on the error rate distribution of the STT-RAM storage unit of the present invention includes three stages: a preprocessing stage, a registration stage and a verification stage. First, record the positions of all EDPs in the STT-RAM array in the pre-processing stage (Pre-process), and then input multiple EDP positions in the enrollment phase (Enrollment Phase), and the chip circuit uses the relative size of the two cell error rates in these EDPs to output Reference output (Reference Response), in the verification phase (Evaluation Phase), reproduce the registration phase again, and finally judge the authenticity of the chip according to the output of the verification phase and the registration phase.

本发明提供的技术方案是:The technical scheme provided by the invention is:

一种基于STT-RAM存储单元错误率分布的物理不可克隆认证方法,依次包括如下步骤:A physical non-clonable authentication method based on STT-RAM storage unit error rate distribution, comprising the following steps in turn:

1)在预处理阶段执行如下操作,得到多个EDP单元的地址:1) Perform the following operations in the preprocessing stage to obtain the addresses of multiple EDP units:

1.1分别在Error-Least-State与Error-Most-State环境下,对于每个奇地址单元,设定该单元的地址为Addr,通过N轮RWR测试判断地址为Addr与Addr+1两个单元是否构成EDP;1.1 In the Error-Least-State and Error-Most-State environments respectively, for each odd address unit, set the address of the unit to Addr, and judge whether the two units whose addresses are Addr and Addr+1 through N rounds of RWR tests constitute the EDP;

1.2如果上述两个单元构成EDP,则得到该EDP的地址EDP_Addr和EDP_Addr+1;1.2 If the above two units constitute an EDP, the addresses EDP_Addr and EDP_Addr+1 of the EDP are obtained;

1.3将EDP_Addr输出保存到数据库;1.3 Save the EDP_Addr output to the database;

2)在注册阶段执行如下操作,得到参考输出:2) Perform the following operations in the registration phase to get the reference output:

2.1取得Nsec个在预处理阶段得到的数据库中的EDP,计数器置为0;其中,Nsec为偶数;Nsec的取值应大于等于128,本发明中实施例中Nsec取值为128;2.1 obtain N sec EDPs in the database obtained in the preprocessing stage, and the counter is set to 0; wherein, N sec is an even number; the value of N sec should be greater than or equal to 128, and the value of N sec is 128 in the embodiment of the present invention ;

2.2对于每个EDP,判断EDP_Addr与EDP_Addr+1地址的两个单元在R轮RWR测试中,哪个单元发生错误的次数更多;如果EDP_Addr+1比EDP_Addr发生错误的次数多,计数器加1;通过对1MB大小1T1J的STT-RAM存储阵列进行仿真实验,证明R的取值应该满足R>=4,本发明实施例中R=4。2.2 For each EDP, judge whether the two units of EDP_Addr and EDP_Addr+1 have more errors in the R-round RWR test; if EDP_Addr+1 has more errors than EDP_Addr, add 1 to the counter; pass A simulation experiment is carried out on an STT-RAM storage array with a size of 1MB and 1T1J, and it is proved that the value of R should satisfy R>=4, and R=4 in the embodiment of the present invention.

2.3当遍历Nsec个EDP后,将计数器中的数与Nsec的一半比大小,大于等于时输出1否则输出0;2.3 After traversing N sec EDPs, compare the number in the counter with half of N sec , output 1 if greater than or equal to, otherwise output 0;

2.4将2.3输出结果作为参考输出,存到一个安全的数据库中;2.4 Use the output of 2.3 as a reference output and store it in a safe database;

3)设结果不同次数为0,在验证阶段执行如下操作,得到结果不同的总次数,用于验证给定设备与注册阶段的设备是否相同:3) Set the number of different results to 0, and perform the following operations in the verification phase to obtain the total number of different results, which is used to verify whether the given device is the same as the device in the registration phase:

3.1取得Nsec个在预处理阶段得到的数据库中的EDP,将计数器置为0;确保这Nsec个EDP作为一次整体的输入在注册阶段被使用过;该Nsec取值与步骤2.1中的Nsec取值相同,本发明实施例中取值为128;3.1 Obtain N sec EDPs in the database obtained in the preprocessing stage, and set the counter to 0; ensure that the N sec EDPs have been used as a whole input in the registration stage; the N sec value is the same as that in step 2.1 The value of N sec is the same, and the value is 128 in the embodiment of the present invention;

3.2对于每个EDP,判断EDP_Addr与EDP_Addr+1地址的两个单元在R轮RWR测试中,哪个单元发生错误的次数更多;如果EDP_Addr+1比EDP_Addr发生错误的次数多,计数器加1;该R取值与步骤2.2中的R取值相同,本发明实施例中取值为4;3.2 For each EDP, judge whether the two units of EDP_Addr and EDP_Addr+1 have more errors in the R-round RWR test; if EDP_Addr+1 has more errors than EDP_Addr, add 1 to the counter; The value of R is the same as the value of R in step 2.2, and the value is 4 in the embodiment of the present invention;

3.3当遍历Nsec个EDP_Addr后,将计数器中的数与Nsec的一半比大小,大于等于时输出1否则输出0;3.3 After traversing N sec EDP_Addr, compare the number in the counter with half of N sec , and output 1 when it is greater than or equal to, otherwise output 0;

3.4将3.3的输出结果与注册阶段步骤2.4的参考输出结果作比较,如果二者结果不同则结果不同次数加1;3.4 Compare the output result of 3.3 with the reference output result of step 2.4 in the registration phase, if the two results are different, add 1 to the number of different results;

3.5多次重复步骤3.1到3.4,得到结果不同的总次数;3.5 Repeat steps 3.1 to 3.4 multiple times to obtain the total number of different results;

3.6判断步骤3.5中结果不同的总次数是否大于设定阈值,如大于则判断设备没通过认证,否则设备通过认证。3.6 Determine whether the total number of different results in step 3.5 is greater than the set threshold, if greater, determine that the device has not passed the authentication, otherwise the device has passed the authentication.

在本发明实施例中,上述基于STT-RAM存储单元错误率分布的物理不可克隆认证方法是在工作电压0.9V-1.1V、工作温度275K-325K环境下进行的,其中,步骤1.1中的Error-Most-State表示最低工作电压、最高工作温度的环境,即(0.9V,325K)的环境;Error-Least-State表示最高工作电压、最低工作温度的环境,即(1.1V,275K)的环境。In the embodiment of the present invention, the above-mentioned physical unclonable authentication method based on the error rate distribution of STT-RAM storage cells is carried out under the environment of operating voltage 0.9V-1.1V and operating temperature 275K-325K, wherein the Error in step 1.1 -Most-State means the environment with the lowest working voltage and the highest working temperature, that is, the environment of (0.9V, 325K); Error-Least-State means the environment with the highest working voltage and the lowest working temperature, that is, the environment of (1.1V, 275K) .

上述基于STT-RAM存储单元错误率分布的物理不可克隆认证方法中,经过仿真实验,步骤1.1是通过两个单元发生错误的次数之差是否大于等于Nth来判断两个位置的单元是否构成EDP;步骤1.1中的N和Nth的取值应该满足N=Nth>=3,本发明实施例中N=Nth=3;步骤2.2中的R取值应该满足R>=4,本发明实施例中R=4;步骤3.2中的R取值与步骤2.2相同;步骤3.5中的多次为128次,步骤3.6中的阈值为23。在本发明实施例中,步骤2.1和步骤3.1中的Nsec取值为128。In the above-mentioned physical non-clonable authentication method based on the error rate distribution of STT-RAM storage units, after simulation experiments, step 1.1 is to determine whether the units at two positions constitute an EDP by whether the difference between the number of times errors occur in the two units is greater than or equal to N th The value of N and Nth in step 1.1 should satisfy N= Nth >=3, N= Nth =3 in the embodiment of the present invention; The value of R in step 2.2 should satisfy R>=4, the present invention In the embodiment, R=4; the value of R in step 3.2 is the same as that in step 2.2; the number of times in step 3.5 is 128, and the threshold in step 3.6 is 23. In the embodiment of the present invention, the value of N sec in step 2.1 and step 3.1 is 128.

与现有技术相比,本发明的有益效果是:Compared with prior art, the beneficial effect of the present invention is:

通过本发明所提供的基于STT-RAM存储单元错误率分布的物理不可克隆认证方法,利用验证阶段和注册阶段输出的EDP内两个单元错误率相对大小对硬件设备进行认证,提高了认证的可靠性,加快了认证速度,节省了硬件开销。Through the physical non-clonable authentication method based on the error rate distribution of the STT-RAM storage unit provided by the present invention, the relative size of the error rate of the two units in the EDP output by the verification stage and the registration stage is used to authenticate the hardware device, which improves the reliability of the authentication. performance, which speeds up the authentication speed and saves hardware overhead.

附图说明Description of drawings

图1是本发明实施例中预处理阶段的流程框图。Fig. 1 is a flowchart of the preprocessing stage in the embodiment of the present invention.

图2是本发明实施例中注册阶段的流程框图。Fig. 2 is a flowchart of the registration phase in the embodiment of the present invention.

图3是本发明实施例中验证阶段的流程框图。Fig. 3 is a flowchart of the verification phase in the embodiment of the present invention.

具体实施方式Detailed ways

下面结合附图,通过实施例进一步描述本发明,但不以任何方式限制本发明的范围。Below in conjunction with accompanying drawing, further describe the present invention through embodiment, but do not limit the scope of the present invention in any way.

本实施例针对1个1MB大小1T1J的STT-RAM进行认证,指定其工作环境为电压范围0.9V-1.1V,温度范围275K到325K。利用本发明提供的基于STT-RAM存储单元错误率分布的物理不可克隆认证方法,本实施例的认证工作分为三个阶段——预处理阶段、注册阶段,验证阶段。This embodiment is certified for one STT-RAM with a size of 1MB and 1T1J, and its working environment is specified as a voltage range of 0.9V-1.1V and a temperature range of 275K to 325K. Utilizing the physical unclonable authentication method based on the error rate distribution of STT-RAM storage units provided by the present invention, the authentication work in this embodiment is divided into three stages—preprocessing stage, registration stage, and verification stage.

A.在预处理阶段,执行如下操作:A. In the preprocessing stage, perform the following operations:

A1.分别在Error-Least-State与Error-Most-State下,对于每个奇地址Addr,判断Addr与Addr+1两个位置的单元是否构成EDP。判断EDP的方法是,在N轮RWR测试中,两个单元发生错误的次数之差大于等于Nth,本实施例中,N和Nth均取值为3;A1. Under Error-Least-State and Error-Most-State respectively, for each odd address Addr, determine whether the units at Addr and Addr+1 constitute an EDP. The method for judging the EDP is that in the N rounds of RWR tests, the difference between the number of errors of the two units is greater than or equal to N th , and in this embodiment, both N and N th are set to 3;

A2.如果构成EDP输出Addr的值,否则继续检测下个奇地址对应的两个单元是否构成EDP。;A2. If EDP is formed, output the value of Addr, otherwise continue to detect whether the two units corresponding to the next odd address constitute EDP. ;

A3.将输出的EDP保存以供稍后使用;A3. Save the output EDP for later use;

B.在注册阶段,执行如下操作:B. During the registration phase, perform the following operations:

B1.输入128个预处理阶段得到的EDP_Addr;B1. Input the EDP_Addr obtained in 128 preprocessing stages;

B2.对于每个EDP_Addr,判断EDP_Addr与EDP_Addr+1地址的两个单元在4轮RWR测试中,哪个单元发生错误次数多,如果后者多,计数器加1,否则不加;B2. For each EDP_Addr, judge whether the two units of EDP_Addr and EDP_Addr+1 addresses have the most errors in the 4 rounds of RWR tests. If the latter has more errors, the counter is incremented by 1, otherwise it is not added;

B3.当遍历128个EDP_Addr后,将计数器中的数与64比大小,大于等于时输出1否则0;B3. After traversing 128 EDP_Addr, compare the number in the counter with 64, output 1 if greater than or equal to, otherwise 0;

B4.将输出结果存到一个安全的数据库中作为稍后认证阶段的参考输出;B4. Store the output results in a secure database as a reference output for the later authentication stage;

C.在验证阶段,执行如下操作:C. In the verification phase, perform the following operations:

C1.输入128个EDP_Addr,确保在注册阶段这128个EDP_Addr作为一次整体的输入被使用过;C1. Input 128 EDP_Addr to ensure that these 128 EDP_Addr are used as a whole input during the registration phase;

C2.对于每个EDP_Addr,判断EDP_Addr与EDP_Addr+1地址的两个单元在R轮RWR测试中,哪个单元发生错误次数多,如果后者多,计数器加1,否则不加;C2. For each EDP_Addr, determine which unit has the most errors in the R-round RWR test of the two units of EDP_Addr and EDP_Addr+1 addresses, if the latter has more errors, add 1 to the counter, otherwise do not add;

C3.当遍历128个EDP_Addr后,将计数器中的数与64比大小,大于等于时输出1否则0;C3. After traversing 128 EDP_Addr, compare the number in the counter with 64, output 1 if greater than or equal to, otherwise 0;

C4.将输出结果与注册阶段的结果作比较;C4. Compare the output result with the result of the registration phase;

C5.重复C1到C4步骤一定次数,看最终有多少次输出不一样,如果不一样的次数大于23,则判断芯片没通过认证,否则通过认证。C5. Repeat steps C1 to C4 for a certain number of times to see how many times the final output is different. If the number of times of difference is greater than 23, it is judged that the chip has not passed the certification, otherwise it has passed the certification.

图1是本发明实施例中预处理阶段的流程框图。参考附图1,在预处理阶段,STT-RAM的工作环境首先被置为Error-Most-State,即(0.9V,325K)的环境;然后逐个验证奇地址Addr与Addr+1位置的单元在3轮RWR测试中,奇地址Addr与Addr+1位置发生错误的次数Err1与Err2之差是否大于等于Nth,Nth取值为3,如果是则将Addr存入数据库。例如经过3轮RWR测试发现1与2位置的单元分别错误了3次与0次,那么1将被存入数据库。紧接着,STT-RAM的工作环境被置为Error-Least-State,即(1.1V,275K)的环境,然后测试上述数据库中的Addr在这种环境下是否依旧满足Addr与Addr+1位置的单元在3轮RWR测试中的错误次数Err1与Err2之差大于等于Nth,Nth取值为3,如果满足则保留Addr,如果不满足则从数据库中剔除Addr。例如在Error-Least-State下发现地址1与地址2的单元在3轮RWR测试中的错误次数之差小于3,那么1将从数据库中剔除。Fig. 1 is a flowchart of the preprocessing stage in the embodiment of the present invention. Referring to accompanying drawing 1, in the preprocessing stage, the working environment of STT-RAM is at first set to Error-Most-State, namely (0.9V, 325K) environment; Then verify one by one that the unit of odd address Addr and Addr+1 position is in In the 3 rounds of RWR tests, whether the difference between the number of errors Err1 and Err2 at the odd address Addr and Addr+1 is greater than or equal to N th , and the value of N th is 3, and if so, store Addr in the database. For example, after 3 rounds of RWR testing, it is found that the units at positions 1 and 2 are wrong 3 times and 0 times respectively, then 1 will be stored in the database. Immediately afterwards, the working environment of STT-RAM is set to Error-Least-State, that is, (1.1V, 275K) environment, and then it is tested whether the Addr in the above database still meets the requirements of Addr and Addr+1 in this environment. The difference between the error times Err1 and Err2 of the unit in the three rounds of RWR tests is greater than or equal to N th , and the value of N th is 3. If it is satisfied, Addr will be kept, and if it is not satisfied, Addr will be deleted from the database. For example, under Error-Least-State, it is found that the difference between the number of errors between address 1 and address 2 in 3 rounds of RWR tests is less than 3, then 1 will be removed from the database.

图2是本发明实施例中注册阶段的流程框图。参考附图2,在注册阶段,首先将计数器Intermediate置为0,然后输入128个在预处理阶段得到的、数据库中的Addr。对于每个Addr,比较Addr与Addr+1位置单元在R(R取值为4)轮RWR测试下的错误次数,如果Addr的错误次数大于Addr+1,那么计数器Intermediate加1。再遍历了128个Addr后,即Counter=128时,比较计数器Intermediate的值与64(128的一半)的大小,如果大于,输出1,否则输出0。最后将输出存入一个安全的数据库。例如对于128个Addr,假设其中有67个Addr都满足Addr比Addr+1位置单元在4轮RWR测试下的错误次数多,那么最后计数器的数值为67。由于67>64,因此输出1到安全数据库中。Fig. 2 is a flowchart of the registration phase in the embodiment of the present invention. Referring to Figure 2, in the registration phase, first set the counter Intermediate to 0, and then input 128 Addr obtained in the preprocessing phase and in the database. For each Addr, compare the number of errors of Addr and Addr+1 position units under R (R is 4) rounds of RWR tests. If the number of errors of Addr is greater than Addr+1, then add 1 to the counter Intermediate. After traversing 128 Addr, that is, when Counter=128, compare the value of the counter Intermediate with the size of 64 (half of 128), if it is greater, output 1, otherwise output 0. Finally, the output is stored in a secure database. For example, for 128 Addr, assuming that 67 Addr among them satisfy that Addr has more error times than Addr+1 position unit under 4 rounds of RWR tests, then the final value of the counter is 67. Since 67>64, output 1 to the security database.

图3是本发明实施例中验证阶段的流程框图。参考附图3,在验证阶段,首先将计数器Intermediate置为0,然后输入曾经在注册阶段作为一组输入的128个Addr。对于每个Addr,比较Addr与Addr+1位置单元在4轮RWR测试下的错误次数,如果Addr的错误次数大于Addr+1,那么计数器Intermediate加1。再遍历了128个Addr后,即Counter=128时,比较计数器与64的大小,如果大于,输出1,否则输出0。最后将输出与安全数据库中对应数据进行比较,如果不同则记录下不同的次数HD。反复进行上述步骤128次,即Compare_times=128时,将不同的次数HD与阈值23相比较,如果大于23则判断验证失败否则成功。例如对于被测试的STT-RAM芯片,若通过测试发现在验证阶段其输出共有25次与安全数据库中对应输出不同,那么其认证结果为验证失败,即可以认为这块芯片不是注册阶段的芯片。Fig. 3 is a flowchart of the verification phase in the embodiment of the present invention. Referring to Fig. 3 , in the verification phase, the counter Intermediate is first set to 0, and then the 128 Addr used as a group input in the registration phase are input. For each Addr, compare the number of errors of Addr and Addr+1 position units under 4 rounds of RWR tests, if the number of errors of Addr is greater than Addr+1, then add 1 to the counter Intermediate. After traversing 128 Addr, that is, when Counter=128, compare the size of the counter with 64, and if it is larger, output 1, otherwise output 0. Finally, compare the output with the corresponding data in the security database, and record the different times HD if they are different. The above steps are repeated 128 times, that is, when Compare_times=128, different times HD are compared with the threshold value 23, and if it is greater than 23, it is judged that the verification fails, otherwise it succeeds. For example, for the tested STT-RAM chip, if the test finds that its output in the verification phase is different from the corresponding output in the security database 25 times, then the verification result is a verification failure, that is, it can be considered that this chip is not a chip in the registration phase.

需要注意的是,公布实施例的目的在于帮助进一步理解本发明,但是本领域的技术人员可以理解:在不脱离本发明及所附权利要求的精神和范围内,各种替换和修改都是可能的。因此,本发明不应局限于实施例所公开的内容,本发明要求保护的范围以权利要求书界定的范围为准。It should be noted that the purpose of the disclosed embodiments is to help further understand the present invention, but those skilled in the art can understand that various replacements and modifications are possible without departing from the spirit and scope of the present invention and the appended claims of. Therefore, the present invention should not be limited to the content disclosed in the embodiments, and the protection scope of the present invention is subject to the scope defined in the claims.

Claims (8)

1. the physics based on the distribution of STT-RAM storage unit error rate can not clone an authentication method, in turn includes the following steps:
1) perform following operation at pretreatment stage, obtain the address of multiple EDP unit:
1.1 respectively under Error-Least-State and Error-Most-State environment, and for each odd address unit, the address setting this unit is Addr, and whether two unit being Addr and Addr+1 by N wheel RWR test judging unit address form EDP;
If 1.2 said two units form EDP, then obtain address EDP_Addr and EDP_Addr+1 of this EDP;
EDP_Addr output is saved in database by 1.3;
2) performing following operation at registration phase, obtaining with reference to exporting:
2.1 obtain N from database described in step 1.3 secthe individual EDP obtained at pretreatment stage, is set to 0 by counter; Described N secfor being more than or equal to the even number of 128;
2.2 for each EDP in step 2.1, and judge that two unit of EDP_Addr and EDP_Addr+1 address are taken turns in RWR test at R, the number of times which unit makes a mistake is more; If EDP_Addr+1 makes a mistake often than EDP_Addr, the counter in step 2.1 adds 1;
2.3 as traversal N secafter individual EDP, by the number in counter and N sechalf than size, the number in counter is more than or equal to N secone half export 1, otherwise export 0;
2.3 Output rusults export as reference by 2.4, deposit in the database of a safety;
3) set the different number of times of result as 0, perform following operation at Qualify Phase, obtain the total degree that result is different, whether identical with the equipment of registration phase for verifying to locking equipment:
3.1 obtain N seceDP in the database that individual pretreatment stage obtains, is set to 0 by counter; Described N secindividual EDP is previously used at registration phase as the input of Integratively; Described N secvalue and step 2.1 in N secidentical;
3.2 for each EDP in step 3.1, and judge that two unit of EDP_Addr and EDP_Addr+1 address are taken turns in RWR test at R, the number of times which unit makes a mistake is more; If EDP_Addr+1 makes a mistake often than EDP_Addr, the counter in step 3.1 adds 1;
3.3 as the described N of traversal secafter individual EDP_Addr, by the number in counter and N sechalf than size, the number in counter is more than or equal to N secone half export 1, otherwise export 0;
The reference Output rusults of the Output rusults of 3.3 and registration phase step 2.4 is made comparisons by 3.4, if the two result difference, the different number of times of result adds 1;
Repeat step 3.1 to 3.4, obtain the total degree that result is different for more than 3.5 time;
Whether the total degree that in 3.6 determining steps 3.5, result is different is greater than setting threshold value, and as being greater than then, judgment device is not by certification, otherwise equipment passes through certification.
2. physics can not clone authentication method as claimed in claim 1, it is characterized in that, Error-Most-State described in step 1.1 represents that minimum operating voltage is 0.9V, and maximum operating temperature is the environment of 325K; Described Error-Least-State represents that maximum operating voltage is 1.1V, and minimum operating temperature is the environment of 275K.
3. physics can not clone authentication method as claimed in claim 1, it is characterized in that, whether the difference whether forming the number of times that EDP makes a mistake particular by two unit that described element address is Addr and Addr+1 described in step 1.1 is more than or equal to N thjudge, N thequal with N described in step 1.1, value is for being more than or equal to 3.
4. physics can not clone authentication method as claimed in claim 3, it is characterized in that, N value described in step 1.1 is 3.
5. physics can not clone authentication method as claimed in claim 1, it is characterized in that, the N in step 2.1 and step 3.1 secvalue is 128.
6. physics can not clone authentication method as claimed in claim 1, it is characterized in that, described in step 2.2 and step 3.2, the value of R is 4.
7. physics can not clone authentication method as claimed in claim 1, it is characterized in that, is repeatedly 128 times described in step 3.5.
8. physics can not clone authentication method as claimed in claim 1, it is characterized in that, threshold value described in step 3.6 is 23.
CN201510031305.3A 2015-01-22 2015-01-22 PUF authentication methods based on the distribution of STT ram memory cells error rate Active CN104658601B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510031305.3A CN104658601B (en) 2015-01-22 2015-01-22 PUF authentication methods based on the distribution of STT ram memory cells error rate

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510031305.3A CN104658601B (en) 2015-01-22 2015-01-22 PUF authentication methods based on the distribution of STT ram memory cells error rate

Publications (2)

Publication Number Publication Date
CN104658601A true CN104658601A (en) 2015-05-27
CN104658601B CN104658601B (en) 2017-12-29

Family

ID=53249627

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510031305.3A Active CN104658601B (en) 2015-01-22 2015-01-22 PUF authentication methods based on the distribution of STT ram memory cells error rate

Country Status (1)

Country Link
CN (1) CN104658601B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106257590A (en) * 2015-06-18 2016-12-28 松下知识产权经营株式会社 There is Nonvolatile memory devices and the integrated circuit card of tamper-resistance properties
US10572190B2 (en) 2017-05-17 2020-02-25 Winbond Electronics Corp. Physical unclonable function code providing apparatus and providing method thereof

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009024913A2 (en) * 2007-08-22 2009-02-26 Intrinsic Id Bv Identification of devices using physically unclonable functions
US20110234241A1 (en) * 2009-02-23 2011-09-29 Lewis James M Method and system for protecting products and technology from integrated circuits which have been subject to tampering, stressing and replacement as well as detecting integrated circuits that have been subject to tampering
US20120066571A1 (en) * 2010-08-31 2012-03-15 Stmicroelectronics (Rousset) Sas Key extraction in an integrated circuit
US20120106235A1 (en) * 2010-11-03 2012-05-03 International Business Machines Corporation Implementing physically unclonable function (puf) utilizing edram memory cell capacitance variation
CN102656588A (en) * 2009-08-14 2012-09-05 本质Id有限责任公司 Physically unclonable function with tamper prevention and anti-aging system
US20140268994A1 (en) * 2013-03-14 2014-09-18 United States Of America As Represented By The Secretary Of The Air Force Write-Time Based Memristive Physical Unclonable Function

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009024913A2 (en) * 2007-08-22 2009-02-26 Intrinsic Id Bv Identification of devices using physically unclonable functions
US20110234241A1 (en) * 2009-02-23 2011-09-29 Lewis James M Method and system for protecting products and technology from integrated circuits which have been subject to tampering, stressing and replacement as well as detecting integrated circuits that have been subject to tampering
CN102656588A (en) * 2009-08-14 2012-09-05 本质Id有限责任公司 Physically unclonable function with tamper prevention and anti-aging system
US20120066571A1 (en) * 2010-08-31 2012-03-15 Stmicroelectronics (Rousset) Sas Key extraction in an integrated circuit
US20120106235A1 (en) * 2010-11-03 2012-05-03 International Business Machines Corporation Implementing physically unclonable function (puf) utilizing edram memory cell capacitance variation
US20140268994A1 (en) * 2013-03-14 2014-09-18 United States Of America As Represented By The Secretary Of The Air Force Write-Time Based Memristive Physical Unclonable Function

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
LE ZHANG 等: "《2014 IEEE International Symposium on Circuits and Systems (ISCAS)》", 31 December 2014 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106257590A (en) * 2015-06-18 2016-12-28 松下知识产权经营株式会社 There is Nonvolatile memory devices and the integrated circuit card of tamper-resistance properties
CN106257590B (en) * 2015-06-18 2021-03-30 新唐科技日本株式会社 Tamper-resistant non-volatile memory device and integrated circuit card
US10572190B2 (en) 2017-05-17 2020-02-25 Winbond Electronics Corp. Physical unclonable function code providing apparatus and providing method thereof

Also Published As

Publication number Publication date
CN104658601B (en) 2017-12-29

Similar Documents

Publication Publication Date Title
Prabhu et al. Extracting device fingerprints from flash memory by exploiting physical variations
CN103946854B (en) The intrinsic fingerprint recognition based on reservation being characterized with fuzzy algorithmic approach and dynamic key
Hashemian et al. A robust authentication methodology using physically unclonable functions in DRAM arrays
JP6794297B2 (en) Authentication device and authentication method
US20170373862A1 (en) Physical Unclonable Function Using Augmented Memory For Challenge-Response Hashing
KR20160128911A (en) Method of generating unique cryptographic key and corresponding helper data
US9712330B2 (en) Physically uncloneable function device using MRAM
US20190042480A1 (en) Method for non-volatile memory and memory controller secured and authenticated pairing
Shi et al. Exploiting process variation for write performance improvement on NAND flash memory storage systems
CN106295408A (en) Integrated circuit and encryption method
US9425803B1 (en) Apparatuses and methods for implementing various physically unclonable function (PUF) and random number generator capabilities
Sakib et al. An aging-resistant NAND flash memory physical unclonable function
CN103020552A (en) PUF (Physical Unclonable Function) On-chip self enrollment system based on SRAM (Static Random Access Memories) of PUF and implementation method thereof
Pandey et al. Noise-resilient SRAM physically unclonable function design for security
CN105426314B (en) A kind of process mapping method of FPGA memories
Yue et al. DRAM-based authentication using deep convolutional neural networks
Zhang et al. A novel PUF based on cell error rate distribution of STT-RAM
JPWO2019146198A1 (en) Non-volatile memory device and its writing method
JP6937288B2 (en) Non-volatile memory device and challenge-response method
CN104658601B (en) PUF authentication methods based on the distribution of STT ram memory cells error rate
Fainstein et al. Dynamic intrinsic chip ID using 32nm high-K/metal gate SOI embedded DRAM
Khan et al. Novel magnetic burn-in for retention testing of STTRAM
CN106971757A (en) A kind of method and system of inspection Nand Flash mass
CN111739574B (en) A verification method of static random access memory based on random binary sequence
WO2020128547A1 (en) Method and device to ensure a secure memory access

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB03 Change of inventor or designer information

Inventor after: Sun Guangyu

Inventor after: Zhang Xian

Inventor before: Zhang Xian

Inventor before: Sun Guangyu

COR Change of bibliographic data
GR01 Patent grant
GR01 Patent grant