摘要 |
<p>An authenticatable device comprising a physically-unclonable function ('PUF') device having a PUF input and a PUF output and constructed to, in response to a challenge C, generate a characteristic output O; a processor, having an input connected to the PUF output, configured to: (1) in response to receipt of output O, generate a commitment value dependent upon a private value r, and (2) in response to contemporaneous receipt of output O and of an authentication query including a nonce, return a zero knowledge proof authentication value that corresponds to the commitment value and to a token that includes a blinded value dependent upon private value r and a random value, the processor being configured to decrypt the random value. An authentication system used with the device preferably has a working verification set including challenge C and commitment value, and a limited verification set including challenge C and a corresponding token.</p> |