Patent Grant
10785042
The present application claims the benefit under 35 U.S.C. § 119 of German Patent Application No. DE 102017205818.8 filed on Apr. 5, 2017, which is expressly incorporated herein by reference in its entirety.
The present invention relates to an assembly having a micro-electro-mechanical system as physical unclonable function.
What are referred to as physical unclonable functions (PUF) are physical entities which map a challenge to a response with the aid of a mapping rule, the mapping rule being based on physical characteristics of the entity. Among other things, a PUF evaluates production fluctuations of the entity, and from that, generates an individual response. This individual response varies between different entities, and may therefore be used to identify the entity and/or to generate (cryptographic) keys.
Examples for PUFs are silicon physical random functions (SPUF), which evaluate variations in the delay of transistors and lines in integrated circuits, in order to identify the chip. Arbiter PUFs use an arbiter (e.g., a D flip-flop) to recognize differences in two identical delay paths. In a coating PUF, local resistances of a coating of an integrated circuit are detected and evaluated in order to identify the chip.
U.S. Patent Application Pub. No. 2015/0200775 A1 describes PUFs based on micro-electro-mechanical systems (MEMS).
With the aid of a PUF, cryptographic keys may be generated for the encryption of data or for the safe exchange of data, or more precisely, for secure communication between different arithmetic logic units. An advantage of a key generated from a PUF is, in particular, that it does not have to be stored—storing being vulnerable in terms of security—but rather may be generated as needed by implementing the PUF. This is especially advantageous for situations in which a multitude of entities of identical construction must be individualized like, for example, in data transmission. A current example is what is referred to as the “Internet of Things” (IoT).
The present invention provides an assembly made up of a micro-electro-mechanical system as physical unclonable function and a controllable control element for altering the mapping rule of the function; a packaged unit made up of a plurality of such assemblies; and a system made up of at least one such assembly and a control unit having the features set forth in the independent claims. Advantageous refinements are described herein.
The present invention is based on the measure of employing an MEMS as PUF and, in this context, altering the mapping rule between challenge and response with the aid of a suitable controllable control element. Thus, by altering the driving of the control element, different responses may be generated to the same challenge.
As described, for example, in U.S. Patent Application Pub. No. 2015/0200775 A1 cited in the introduction, micro-electro-mechanical systems may be used as PUFs, the mapping rule being based on mechanical and/or electrical properties like, for instance, a resonant frequency, stiffness of a spring constant relative to the resonant frequency, a capacitance of the system or a change in capacitance caused by change in shape, an enabling voltage, a difference between pull-in voltages, a resistance, an inductance and so forth. These mechanical and/or electrical properties are influenced by ambient parameters like, in particular, temperature and pressure, so that these properties and consequently the mapping rule are likewise able to be altered by a selective change of the ambient parameters, especially by a heating element and/or cooling element as control element.
This also solves the problem of conventional PUFs, which normally are only able to generate a few different, usually only one, response to a challenge. As a result, with the design approach according to the present invention—if needed—notably, a plurality of different cryptographic keys may also be generated from the different responses. This permits a reconfiguration of cryptographic keys, which increases the value of the PUF. Depending on the form of the control element, it may also be used advantageously to destroy the PUF, for example, by great heat. In this way, the read-out of encrypted information may be prevented permanently. Another advantageous possibility for destroying micro-electro-mechanical systems lies in the use of what are referred to as pull-in effects. In that case, a voltage is applied to adjacent conductive structures (electrodes) which is so high that due to electrostatic attraction, they attract each other and touch, which leads to destruction of the micro-electro-mechanical structure.
Preferably, an assembly according to the present invention is used to generate a unique response, from which an identification feature and/or a cryptographic key is/are then generated. A system according to the present invention, e.g., in the form of a System-on-a-Chip (SoC), has at least one assembly according to the present invention and a control unit which is equipped to generate the control command for the control element. This represents a means for attaining the objective that is ready for use in a wide variety of application cases, especially for use for cryptography and/or in network-capable devices.
By preference, the entire assembly is disposed in a packaging which preferably is formed of a ceramic material like silicon dioxide, for example. In this way, influencing of the mapping rule by external disturbances, e.g., also in the form of adjacent assemblies, may be reduced or completely avoided. Advantageously, it is possible to produce the structure using a normal MEMS process. Here, usually two silicon wafers are used, one which provides the functional structure, as well as a cap wafer which at the end, closes the cavity in a defined state. The generation of a layer on/in the Si wafers for the thermal insulation may, in this case, be interposed as additional process step. Nevertheless, it remains a classic MEMS process, whose basis represents Si technology.
Advantageously, the assembly also has a measuring element for measuring the ambient parameter influencing the mapping rule like, for example, temperature and/or pressure. Notably, a measurement of the ambient parameter may be used for controlling it in closed loop. In this way, the ambient parameter may be adjusted in particularly precise manner. In principle, however, it is also possible and envisaged, especially in the case of packaged units made up of a plurality of assemblies according to the invention, to in each case adjust the ambient parameter along the lines of a pure open-loop control (that is, without feedback of the measured value) and to evaluate the responses based on a comparison or relationship with one another. In this manner, disturbances which act equally on the plurality of assemblies like, for example, an ambient temperature and/or an ambient pressure, may be eliminated.
Further advantages and refinements of the present invention are described herein and are shown in the FIGURE.
The present invention is represented schematically in the FIGURE on the basis of an exemplary embodiment, and is described below with reference to the FIGURE.
In
Each of assemblies 11, 12 has a micro-electro-mechanical system (MEMS) 11a, 12a as physical unclonable function (PUF), a control element taking the form here of heating element 11b, 12b, and according to the preferred specific embodiment of the invention shown, also a measuring element taking the form here of temperature sensor 11c, 12c. In addition, it has a packaging 11d, 12d made of silicon dioxide, which is formed contiguously in the example shown.
PUF 11a, 12a is set up to map a challenge to a response according to a mapping rule based on mechanical and/or electrical properties of the MEMS. For example, the mechanical property may include a resonant frequency or a spring constant; the electrical property may include a capacitance, inductance and/or electrical resistance, for instance. However, it should be emphasized that this is to be understood only by way of example and not definitively, reference being made to U.S. Patent Application Pub. No. 2015/0200775 A1 described above with regard to further details.
In particular, control unit 2 is equipped to act upon assemblies 11, 12 with the challenge, especially in the form of a challenge signal, and to detect the response, especially in the form of a response signal.
The mechanical and/or electrical properties of the MEMS are a function of different ambient parameters like, in particular, ambient temperature and/or ambient pressure. Within the framework of the preferred specific embodiment of the invention, it is now provided that one or more of these ambient parameters, here, for example, the ambient temperature, is/are influenced or adjusted with the aid of the control element formed here as heating element. Temperature sensor 11c, 12c already indicated is provided for a closed-loop control of the temperature. Preferably, control unit 2 is thus set up to regulate the temperature within packaging 11d, 12d to a setpoint value, to thereby alter the respective mapping rule of PUF 11a, 12a.
Packaging 11d, 12d is used essentially to prevent external disturbances in the system, but also to prevent mutual influencing of adjacent assemblies 11, 12.
The use of such assemblies 11, 12 or such systems 1 is particularly advantageous, since the adjustable PUFs may be used, with the aid of suitable adjustment of the ambient parameter, to generate different responses for the same challenge. These different responses may then be used especially to generate different cryptographic keys, which markedly increases the application possibilities of the invention in comparison to conventional systems which, e.g., are able to supply only one response.
According to one preferred specific embodiment of the present invention, a destruction of PUF 11a, 12a is also possible, particularly utilizing what is referred to as the pull-in effect and/or by use of the control element, for example, by way of a suitably high temperature. The destruction of a PUF corresponds to an irreversible erasure, for example, of all cryptographic keys attained from it. If a cryptographic key is erased, data encrypted with this key can also no longer be decrypted. Thus, it is possible to safely erase large volumes of data quickly and easily.
| Number | Date | Country | Kind |
|---|---|---|---|
| 10 2017 205 818 | Apr 2017 | DE | national |
| Number | Name | Date | Kind |
|---|---|---|---|
| 8334757 | Guajardo Merchan | Dec 2012 | B2 |
| 8667265 | Hamlet | Mar 2014 | B1 |
| 8918647 | Wallrabenstein | Dec 2014 | B1 |
| 8981810 | Trimberger | Mar 2015 | B1 |
| 9497312 | Johansson | Nov 2016 | B1 |
| 10132858 | Vanhoucke | Nov 2018 | B2 |
| 10256983 | Bauer | Apr 2019 | B1 |
| 20080112596 | Rhoads | May 2008 | A1 |
| 20080141364 | Skoric | Jun 2008 | A1 |
| 20090132624 | Haselsteiner | May 2009 | A1 |
| 20090327747 | Bruekers | Dec 2009 | A1 |
| 20100031065 | Futa | Feb 2010 | A1 |
| 20100073147 | Guajardo Merchan | Mar 2010 | A1 |
| 20100146261 | Talstra | Jun 2010 | A1 |
| 20100177898 | Tuyls | Jul 2010 | A1 |
| 20110002461 | Erhart | Jan 2011 | A1 |
| 20110191837 | Guajardo Merchan | Aug 2011 | A1 |
| 20110215829 | Guajardo Merchan | Sep 2011 | A1 |
| 20120030270 | Shokrollahi | Feb 2012 | A1 |
| 20130047209 | Satoh | Feb 2013 | A1 |
| 20130133031 | Fainstein | May 2013 | A1 |
| 20140108786 | Kreft | Apr 2014 | A1 |
| 20140376717 | Macchetti | Dec 2014 | A1 |
| 20150071432 | Zhu | Mar 2015 | A1 |
| 20150200775 | Guajardo Merchan | Jul 2015 | A1 |
| 20150295722 | Falk | Oct 2015 | A1 |
| 20160148664 | Katoh | May 2016 | A1 |
| 20160148679 | Yoshimoto | May 2016 | A1 |
| 20160148680 | Yoshimoto | May 2016 | A1 |
| 20160149702 | Fischer | May 2016 | A1 |
| 20160170907 | Walsh | Jun 2016 | A1 |
| 20160269186 | Wallrabenstein | Sep 2016 | A1 |
| 20160373264 | Katoh | Dec 2016 | A1 |
| 20170063559 | Wallrabenstein | Mar 2017 | A1 |
| 20170141929 | Afghah | May 2017 | A1 |
| 20170149572 | Wallrabenstein | May 2017 | A1 |
| 20170242660 | Katoh | Aug 2017 | A1 |
| 20170277457 | Lu | Sep 2017 | A1 |
| 20170329954 | Lao | Nov 2017 | A1 |
| 20170344761 | Jennings | Nov 2017 | A1 |
| 20170345116 | Katoh | Nov 2017 | A1 |
| 20170364709 | Plusquellic | Dec 2017 | A1 |
| 20180102907 | Lin | Apr 2018 | A1 |
| 20180150389 | Bhargava | May 2018 | A1 |
| 20180183613 | Dafali | Jun 2018 | A1 |
| 20180191512 | Tomishima | Jul 2018 | A1 |
| 20180329962 | Schrijen | Nov 2018 | A1 |
| 20200076622 | Best | Mar 2020 | A1 |
| Number | Date | Country | |
|---|---|---|---|
| 20180294981 A1 | Oct 2018 | US |
