PUFPass: A password management mechanism based on software/hardware codesign

Guo Qingli; Ye Jing; Li Bing; Hu Yu; Li Xiaowei; Lan Yazhu; Zhang Guohe

首页> 外文期刊>Integration >PUFPass: A password management mechanism based on software/hardware codesign

【24h】

PUFPass: A password management mechanism based on software/hardware codesign

机译：PUFPass：基于软件/硬件代码签名的密码管理机制

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Secure passwords need high entropy, but are difficult for users to remember. Password managers minimize the memory burden by storing site passwords locally or generating secure site passwords from a master password through hashing or key stretching. Unfortunately, they are threatened by the single point of failure introduced by the master password which is vulnerable to various attacks such as offline attack and shoulder surfing attack. To handle these issues, this paper proposes the PUFPass, a secure password management mechanism based on software/hardware codesign. By introducing the hardware primitive, Physical Unclonable Function (PUF), into PUFPass, the random physical disorder is exploited to strengthen site passwords. An illustration of PUFPass in the Android operating system is given. PUFPass is evaluated from aspects of both security and preliminary usability. The security of the passwords is evaluated using a compound heuristic algorithm based PUF attack software and an open source password cracking software, respectively. Finally, PUFPass is compared with other password management mechanisms using the Usability-Deployability-Security (UDS) framework. The results show that PUFPass has great advantages in security while maintaining most benefits in usability.

机译：安全密码需要较高的熵，但是用户很难记住。密码管理器通过在本地存储站点密码或通过哈希或密钥扩展从主密码生成安全站点密码来最大程度地减少内存负担。不幸的是，它们受到主密码引入的单点故障的威胁，该密码易受脱机攻击和肩膀冲浪攻击等各种攻击的攻击。为了解决这些问题，本文提出了PUFPass，一种基于软件/硬件代码签名的安全密码管理机制。通过将硬件原语物理不可克隆功能（PUF）引入PUFPass，可利用随机物理混乱来增强站点密码。给出了Android操作系统中的PUFPass的说明。从安全性和初步可用性两方面评估PUFPass。分别使用基于复合启发式算法的PUF攻击软件和开源密码破解软件来评估密码的安全性。最后，使用可用性，部署性，安全性（UDS）框架将PUFPass与其他密码管理机制进行比较。结果表明，PUFPass在安全性方面具有很大的优势，同时在可用性方面保持了大多数优势。

著录项

来源
《Integration》 |2019年第1期|173-183|共11页
作者
Guo Qingli; Ye Jing; Li Bing; Hu Yu; Li Xiaowei; Lan Yazhu; Zhang Guohe;
展开▼
作者单位

Xi An Jiao Tong Univ, Sch Microelect, Xian 710049, Shanxi, Peoples R China;

Chinese Acad Sci, Inst Comp Technol, State Key Lab Comp Architecture, Beijing 100190, Peoples R China;

Univ Chinese Acad Sci, Beijing 100049, Peoples R China;

Duke Univ, Durham, NC 27708 USA;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
Password; Password management mechanism; PUF; Security; Usability;

机译：密码;密码管理机制;PUF;安全性;可用性;

相似文献

外文文献
中文文献
专利

1. Hardware-Software Codesign of an Embedded Multiple-Supply Power Management Unit for Multicore SoCs Using an Adaptive Global/Local Power Allocation and Processing Scheme [J] . RAJDEEP BONDADE, DONGSHENG MA ACM Transactions on Design Automation of Electronic Systems . 2011,第3期

机译：使用自适应全局/本地电源分配和处理方案的多核SoC嵌入式多电源电源管理单元的硬件-软件协同设计
2. Model-Based Hardware-Software Codesign of ECT Digital Processing Unit [J] . Atef Allam, Wael Deabes Modelling and simulation in engineering . 2021,第a期

机译：基于模型的硬件 - 软件电子软件代码数字处理单元
3. Hardware-Software Codesign Based Accelerated and Reconfigurable Methodology for String Matching in Computational Bioinformatics Applications [J] . Gudur Venkateshwarlu Y., Acharyya Amit IEEE/ACM transactions on computational biology and bioinformatics . 2020,第4期

机译：基于硬件 - 软件代码的计算生物信息应用程序中的字符串匹配的加速与可重新配置方法
4. Evaluating the Potential for Hardware Acceleration of Four NTRU-Based Key Encapsulation Mechanisms Using Software/Hardware Codesign [C] . Farnoud Farahmand, Viet B. Dang, Due Tri Nguyen, International Conference on Post-Quantum Cryptography . 2019

机译：使用软件/硬件协同设计评估四种基于NTRU的密钥封装机制的硬件加速潜力
5. Enabling Protocol Coexistence: Hardware-Software Codesign of Wireless Transceivers on Heterogeneous Computing Architectures. [D] . Drozdenko, Benjamin. 2017

机译：启用协议共存：异构计算体系结构上的无线收发器的软硬件协同设计。
6. Open Software/Hardware Platform for Human-Computer Interface Based on Electrooculography (EOG) Signal Classification [O] . Jayro Martínez-Cerveró, Majid Khalili Ardali, Andres Jaramillo-Gonzalez, 2020

机译：基于眼电图（EOG）信号分类的开放式人机界面软件/硬件平台
7. An FPGA Based Software/Hardware Codesign for Real Time Video Processing : A Video Interface Software and Contrast Enhancement Hardware Codesign Implementation using Xilinx Virtex II Pro FPGA [O] . Wang, Jian 2006

机译：用于实时视频处理的基于FPGA的软件/硬件协同设计：使用Xilinx Virtex II Pro FPGA的视频接口软件和对比度增强硬件协同设计实现

PUFPass: A password management mechanism based on software/hardware codesign

摘要

著录项

相似文献

相关主题

期刊订阅