Delay‑Based Silicon Physical Unclonable Functions and Computational Fuzzy Extractors for Secure Key Generation

Name: For developing Physical Unclonable Functions for Device Authentication
Uploaded: 2026-01-11T12:12:30.044414+00:00
Channel: IEEE SecDev
Description: Summary and key takeaways on Delay‑Based Silicon Physical Unclonable Functions and Computational Fuzzy Extractors for Secure Key Generation, covering

IEEE SecDev

Jan 11, 2026

•

4 min read

YouTube video ID: 4aqlTVhQ6fc

Source: YouTube video by IEEE SecDev — Watch original video

PDF

Introduction

The talk reviews 15 years of research on physical unclonable functions (PUFs) that generate device‑specific secrets from manufacturing variations. The goal is to replace costly, trusted‑key‑injection processes with secrets that are intrinsic to each integrated circuit.

Silicon PUFs and Process Variation

No two chips are identical, even with the same layout, because of random variations during fabrication.
These variations appear as differences in gate and wire delays, which can be measured and turned into a unique fingerprint – a silicon biometric.

Ring‑Oscillator (RO) PUFs

The simplest delay‑based PUF uses pairs (or arrays) of ring oscillators.
Each RO oscillates at a slightly different frequency; the frequency difference between two adjacent ROs encodes a bit.
By comparing many pairs, a 128‑bit response can be generated per chip.
Inter‑chip variation is close to the ideal 50 % Hamming distance, but intra‑chip noise (temperature, voltage) can flip up to ~16 bits on each regeneration.

The Need for Stable Keys

Because raw PUF responses are noisy, they cannot be used directly as cryptographic keys. A fuzzy extractor converts a noisy biometric source into a stable, uniformly random secret while publishing helper data that assists reconstruction.

Information‑Theoretic Fuzzy Extractors

Consist of a Gen algorithm (produces helper data B from the noisy source E and a random secret S) and a Rep algorithm (reconstructs S from a new noisy measurement E' and B).
Public helper data leaks information about E and S; the remaining entropy is |S| − |B|.
As the error rate rises, the size of B must increase, reducing the usable secret length and creating a delicate trade‑off.

Computational Fuzzy Extractors via LPN

The speaker proposes a computational approach whose security relies on the hardness of the Learning Parity with Noise (LPN) problem.

LPN formulation: given many equations b_i = a_i·s ⊕ e_i, where a_i are known n‑bit vectors, s is the secret, and e_i are random noise bits, recovering s is computationally hard.
In the PUF context:
e_i are the noisy comparison results from RO pairs.
a_i can be hard‑coded on the chip.
b_i become the public helper data.
During Gen, a fresh random secret s is chosen, the chip computes b_i = a_i·s ⊕ e_i, and stores b_i as helper data.
During Rep, the chip measures a new noisy vector e'_i. Because some e'_i differ from the original e_i, we cannot directly solve for s.

Selecting Stable Bits

The magnitude of the RO frequency difference (the counter difference c_i) indicates stability: large c_i values are unlikely to flip under environmental changes.
By sorting the c_i values and selecting the n largest ones, we obtain n equations whose noise bits are highly reliable (i.e., e'_i = e_i with high probability).
With these reliable equations, the system becomes noise‑free and s can be recovered efficiently via Gaussian elimination.
The parameter m = k·n (total equations) can be increased to tolerate higher error rates; k does not affect LPN security because the adversary never sees the noise bits.

Security Considerations

The adversary knows the public helper data b_i and the matrix A, but not the noise bits e_i nor the stable subset chosen during reconstruction.
Solving LPN without the noise bits remains computationally infeasible, providing a strong security foundation.
The scheme avoids the entropy loss inherent in information‑theoretic fuzzy extractors.

Practical Deployments

Variants of this computational fuzzy extractor have been implemented in SRAM‑PUFs, RO‑PUFs, and other silicon PUFs.
They are used to derive secret keys in FPGAs, cryptographic processors, and other secure hardware products.

Summary of Advantages

Eliminates the need for a trusted key‑injection authority.
Generates device‑unique secrets from intrinsic manufacturing randomness.
Provides stable keys despite environmental noise through selective equation use.
Relies on well‑studied LPN hardness, offering strong computational security.

Silicon PUFs can turn unavoidable manufacturing variations into reliable, device‑specific cryptographic keys, and by leveraging computational fuzzy extractors based on the LPN problem, we obtain stable secrets without the entropy loss of traditional information‑theoretic methods, enabling practical, secure key generation for billions of devices.

Frequently Asked Questions

Who is IEEE SecDev on YouTube?

IEEE SecDev is a YouTube channel that publishes videos on a range of topics. Browse more summaries from this channel below.

Does this page include the full transcript of the video?

Yes, the full transcript for this video is available on this page. Click 'Show transcript' in the sidebar to read it.

Summarize another video

Full Transcript YouTube

hello everyone
i'm srini david s
i'm going to be describing work done
over a period of about 15 years
on physical and clonable functions
storing digital information in a device
such that it is resistant to physical
attack is difficult and expensive
the problem is that an adversary
through a delay ring process can
physically extract keys from
secure non-volatile memory such as
e-square prom while the processor is off
perhaps a more
pressing problem is that
you need a trusted party to embed and
test secret keys in a secure location
for the billions of devices that need to
have unique secrets stored inside a
phone
there is an alternative approach which
is to extract secret key information
individual to each
system
by exploiting the complexities of the
physical system
not this particular physical system but
rather
looking at
integrated circuits through the lens of
random process variations and realizing
that
no two integrated circuits even with
exactly the same
mass layout are identical
because when they're fabricated
on two different pieces of silicon
things come out a little bit different
so physical and vulnerable functions or
puffs could be viewed as a silicon
biometric
observing obviously 3d structure
variances is difficult
but
the fact is that
the differences in fabrication variation
manifest themselves
as differences in delays of wires
as well as gates and this
brought about the notion of delay-based
silicon physical unclonable functions
you have a combinational circuit
it's got certain inputs
but the timing of the signals as they
propagate through the circuit
is different
for the same circuit fabricated across
multiple different chips
perhaps the simplest realization of
a physical and clonable function
is a pair of ring oscillators or an
array of ring oscillators where adjacent
pairs
are compared to each other
you have the top two ring oscillators
that are going to oscillate with
slightly different frequencies
even on the same chip
and definitely you know every ring
oscillator in
different chips will have its own
unique frequency
if it's measured to a fine enough
precision
so let these ring oscillators run for a
while
and keep a count of how many times they
oscillated
and
decide
to generate a random bit
um e1 for example based on comparing the
frequencies of the top two adjacent ring
oscillators generate a second bit based
on comparing the third and fourth ring
oscillators etc
when you do this
um you end up getting
variation
of
two different kinds
and
the first variation is the variation we
want
which is
that
these ring oscillators
are going to oscillate with different
frequencies and across different chips
if you've fabricated
an array of ring oscillators and
compared pairs within each ship you're
going to get
internship variation
in that
a pair in chip a or puffy is going to
be
different but you know close to 50
probability
to
the same pair
in exactly the same position in chip b
or puff b
and the second variation
is
bad variation in that
because you have
an analog quantities getting turned into
digital quantities if in fact ring
oscillators are really close in
frequency these frequencies change with
temperature and voltage and it's
entirely possible that a pair produces a
one from a given chip
and produces a zero at a different time
some preliminary experiments from years
ago
gave us this chart
where we generated 128 bits
from
each ship or each puff
and compared random
128-bit vectors produced from different
chips
and got this plot where
the interchip variation
is
centered kind of close to 64 which is
128 divided by 2 and is close to ideal
unfortunately
there is significant variation in the
individual chip response because of
noise
as i said before
and
this implies that
you end up on the left part of the curve
essentially having
16 out of the 28 128 bits potentially
having
differences or bit flips from one
regeneration to another
so what we need to do
is to produce stable keys
from
these puffs in order to use these
outputs as cryptographic keys
the notion of fuzzy extractors allows us
to do that from any biometric source
and in particular
we have the biometric source
being an input to a generate function
that is also going to
encode a secret key which is completely
randomly selected let's say from a
hardware random number generator and e
and s through the generate algorithm
are going to produce helper data b
which is going to be useful
in the reproduce step or the rep step
where when you regenerate from the
biometric source um you re-run the ring
oscillators again you have some error
rate associated with that so you get e
prime which is not exactly equal to e
but using the helper data b
one can regenerate the exact bit exact
secret s
so this um fuzzy extractor notion
was originally proposed
in an information theoretic setting
where
you recognize that the public data b
is going to leak information about e as
well as s
and
in the information theoretic sense the
number of remaining secret bits is going
to be the number of bits in s minus the
number of bits you expose in b
the basic problem with the fuzzy
extractor approach in this information
theoretic setting is that
as the error rate goes up
the amount of helper data goes up
and the number of secret bits that you
have left goes down which means that you
have to
use
more
ebits
to
encode these s bits
and
that in turn increases
the number of errors if not the error
rate which increases the size of b etc
so
it's it's quite a delicate process to
choose
the values
of the numbers of e s and b in order to
get an information theoretic security
argument
um there's an alternative approach
that's a computational fuzzy extractor
that i'd like to describe
whose
security is based on the hardness of
learning parity with noise or the lpn
problem
the classic lpn problem
is
shown here where there's a set of linear
equations associated with bi equals a i
times s plus e i and this uh
essentially
m of these
equations where
s is the secret it is an n bit secret
each of the a i's
are n bit vectors so you can take the
dot product and get a bit out of it
and each of the eis and the bis are
single bets
and so the lpn problem
simply says
it's hard to discover s
given a i and bi so you give away all of
those
for all m
assuming that there's a non-zero noise
level associated with the e i's
so the e i's are essentially
unpredictable
and this is true
for any m greater than n
um where you can generate
a thousand equations
and as long as each of the e i's
are correspond to random noise of a
thousand bits
then um it doesn't matter that s only
has let's say 100 bits in it lpn is
still hard
this is going to be important
um and so
remember that
and so let's look at the gen step
with the view of looking at the learning
parity with noise problem as a way of
developing a computational fuzzy
extractor
we're going to think of
the puff as generating the noise
associated with the ei values
s is randomly chosen and it's secret
the a's can be fabricated onto the chip
across different ships they can be the
same
obviously the s is different for the
different chips as well as the ease and
so the b's are going to be different as
well they're going to be chip specific
and we're going to
essentially
generate
the public data
helper data associated with the bis or
the capital b from the previous slide
after choosing a secret
by computing
a1 s plus e1 a2 s plus e2 etc
so that's a generate step pretty
straightforward
and now when we want to reproduce this
well
we know the bis we're going to store
this publicly
that's the helper data the a's are
hard coded on the chip
we obviously don't know s
because
s was this
ephemeral
secret that
disappeared after the gen we tried to
encode it
in the helper data
and uh we're also going to use the puff
to get s back
but
what we have here is that when the puff
regenerates as i told you we're not
going to get exactly the eyes back we're
going to get e prime eyes back which are
a little bit different from the eis
so
um
what happens now
is that we're in a situation where
your ei prime values
are not the same as the ei values
and so
we can't really do this reproduce
efficiently
because we don't quite know
how to solve the system of equations
which
is maybe an easy lpn problem but that's
not a polynomial time solvable problem
because we don't have the exact ei
values
if you go back to the ring oscillators
we realize that we can look at this a
little bit differently in the sense that
we could imagine that we could compute
not just the ei comparisons of the
counter values but also have a hint as
to which of these eis is stable
by looking at the difference between the
counter values
and the idea is that if you have two
ring oscillators that are very far apart
in frequency
the difference in the counter values is
going to be large and it's very unlikely
that even with dramatic environmental
radiation
that a ring oscillator that's running at
one gigahertz
is going to get faster than a ring
oscillator that was running at two
gigahertz at a particular temperature
even though the temperature changes the
first ring oscillator is going to be
slower than the second
which means that our ei value is going
to be stable and we can get a hint as to
which of these ei values is stable
by looking at
the difference in the counter values
we're not going to expose the ci or the
ei values to the adversary i want to
make that clear
but what we can do
is given that m is greater than n
and we only need n out of these m e i
prime values to be exactly correct and
as long as we know what these are
we have
um essentially n equations uh that we
could use to solve for s
and we're going to choose the
appropriate
n out of these m equations
by simply
looking for
the most stable bits
corresponding to the
ci values that are the largest
so
just choose
the ci values
n of these that are the largest pick the
equations perhaps they're b1 b5 etc and
bm minus one there's n of these
equations we know the b's we know the
a's
we have great confidence that the e2 e5
em minus one values were exactly the
same as when
as what they were in the generate step
and so now we have an
error-free system of linear equations
that we can solve
using
gaussian elimination
and
the beauty of the scheme is that
you can grow k
where you can think of m as being k
times n
and depending on the error rate you can
set your k value to be three or four
um because um you're going to get a
certain percentage of bits
to be stable with
high
confidence if you set m to be very large
if k is large
and you can use that
to
handle large error rates unlike in the
information theoretic setting
k does not affect security because as i
said
um regardless of m
m can be larger than n
but our lpn assumption essentially says
that as long as each of the ei values
is generated
randomly uh you're going to have
you're going to the adversary is going
to have a difficult time solving lpn and
the adversary does not know the eis or
the ei primes or the cis
and so
this is
actually works in practice um it's been
used um a variety of different puffs
sram puffs in particular ring oscillator
puffs with a variety of error correction
schemes
are being used to generate secret keys
in fpgas
and crypto processor products
thank you