摘要 |
<p>The present invention relates to a method of authenticating a physical token (14) which provides measurable parameters, and a device (11) comprising a physical token (14) which provides measurable parameters for authentication. A basic idea of the invention is to utilize properties of a physical token (14) comprised in a device (11) to detect whether the device has been tampered with. In an enrolment phase, values of a plurality of physical parameters provided by the physical token are measured. This set of measured values is referred to as response data. Noise-correcting data, also referred to as helper data, is employed to provide noise-robustness to the response data in a secure way. Then, in an authentication phase, the parameter values are measured again, and the noise-correcting data is employed to derive verification data. The verification data is compared with the enrolment data and a determination is made whether the derived verification data corresponds to the enrolment data. If so, the physical token is considered to be authenticated.</p> |