The Review of Research on Carbon Tariffs Impacting Export Trade--《Ecological Economy》2011年11期
The Review of Research on Carbon Tariffs Impacting Export Trade
YE Li,ZHAI Jingxia(School of Management,Hebei University of Technology,Tianjin 300130,China)
The carbon tariffs is a hot topic in the field of international trade recently,and the proposal of the issue makes climatic problems increasingly commercialization and politicization.Different nations have different opinions based on their own interests on this issue.So the starting points of both of domestic and abroad scholars are different.This paper discussed the legitimacy of carbon tariffs under the frame of WTO and emphasized the combing and analysis of both home and abroad influences of carbon tariffs to exports trade and the strategies related.Then this paper advanced the research directions in the future on this field based on what has been discussed before.
【Key Words】：
【Fund】：
【CateGory Index】：
X196;F752.62
supports all the CNKI
only supports the PDF format.
【Citations】
Chinese Journal Full-text Database
SHEN Ke-ting (Zhejiang Gongshang University, Hangzhou 310018, China);[J];China Industrial E2010-01
;[J];Energy of C2010-06
Bao Qin1,2, Tang Ling2,3 and Yang Liexun4 (1. Academy of Mathematics and Systems Science, Chinese Academy of Sciences, Beijing . Graduate University of Chinese Academy of Sciences, Beijing . Institute of Policy and Management, Chinese Academy of Sciences, Beijing . National Natural Science Foundation of Department of Management Sciences, Beijing 100085);[J];Management R2010-06
【Co-citations】
Chinese Journal Full-text Database
L? Wei-xia1,LI Ru1,TU Xin-quan2(1.School of Public Administration,University of International Business and Economics,Beijing,100029,P.R.C2.WTO Research Institute,University of International Business and Economics,Beijing,100029,P.R.China);[J];Journal of Beijing Forestry University(Social Sciences);2010-04
Wang L[J];Finance & E2010-12
;[J];China Textile L2011-03
HU Zhi-wei1,LIU Yong2(1.Nanchang Aeronautical University,Nanchang .Renmin University of China,Beijing 100872,China);[J];China Industrial E2010-04
Li Ping Li Shuyun Shen D[J];Studies of International F2010-09
SHEN Mu-[J];Journal of International T2011-05
Fu Jingyan and Li L[J];Management W2010-10
XIE Dan(Hubei University of Economics,Wuhan 430205,China);[J];Social Science of B2011-03
PENG Shui-jun ZHANG Wen-[J];International B2011-03
YANG Fei-long(College of Economics,Fujian Normal University,Fuzhou 350108,China);[J];Journal of Fujian Normal University(Philosophy and Social Sciences Edition);2011-05
【Secondary Citations】
Chinese Journal Full-text Database
SHEN Keting(Zhejiang Gongshang University,310018)LI Gang(Institute of Industrial Economics,CASS,100086);[J];Finance & Trade E2010-01
SHEN Ke-ting (Zhejiang Gongshang University, Hangzhou 310018, China);[J];China Industrial E2010-01
Wang Shaowu, Zhao Zongci, and Tang G[J];International Politics Q2009-04
Shen L[J];Management W2007-10
Lin Boqiang and He Xiaoping (China Center for Energy Economics Research at Xiamen University);[J];Economic Research J2008-05
Lin Boqiang and Mou Dunguo(China Center for Energy Economics Research, Xiamen University);[J];Economic Research J2008-11
Chen Shiyi(China Center for Economic Studies, Fudan University);[J];Economic Research J2009-04
Xie Laihui1, Chen Ying2 (1 Graduate School of Chinese Academy of Social Sciences, Beijing 100732, C 2 Research Center for Sustainable Development, Chinese Academy of Social Sciences, Beijing 100732, China);[J];Advances in Climate Change R2007-04
;[J];World E2009-04
HE Juan (Faculty of Law, the University of Sydney, NSW2000, Australia);[J];World Trade Organization F2010-03
Similar Journals
(C)2006 Tsinghua Tongfang Knowledge Network Technology Co., Ltd.(Beijing)(TTKN) All rights reservedDocument Detail
Physical key-protected one-time pad.
MedLine Citation:
In-Data-Review
Abstract/OtherAbstract:
We describe an encrypted communication principle that forms a secure link between two parties without electronically saving either of their keys. Instead, random cryptographic bits are kept safe within the unique mesoscopic randomness of two volumetric scattering materials. We demonstrate how a shared set of patterned optical probes can generate 10 gigabits of statistically verified randomness between a pair of unique 2 mm(3) scattering objects. This shared randomness is used to facilitate information-theoretically secure communication following a modified one-time pad protocol. Benefits of volumetric physical storage over electronic memory include the inability to probe, duplicate or selectively reset any bits without fundamentally altering the entire key space. Our ability to securely couple the randomness contained within two unique physical objects can extend to strengthen hardware required by a variety of cryptographic protocols, which is currently a critically weak link in the security pipeline of our increasingly mobile communication culture.
Roarke H Benjamin J Ivo M V Sid A Changhuei Yang
Related Documents
- 7147225 -
Publication Detail:
Journal Article
Journal Detail:
Scientific reports
ISO Abbreviation:
Publication Date:
Date Detail:
Created Date:
Completed Date:
Revised Date:
Medline Journal Info:
Nlm Unique ID:
Medline TA:
Other Details:
Languages:
Pagination:
Citation Subset:
Export Citation:
MeSH Terms
Descriptor/Qualifier:
From MEDLINE(R)/PubMed(R), a database of the U.S. National Library of Medicine
Journal Information
Journal ID (nlm-ta): Sci Rep
Journal ID (iso-abbrev): Sci Rep
Publisher: Nature Publishing Group
Article Information
Copyright (C) 2013, Macmillan Publishers Limited. All rights reserved
open-access:
Received Day: 23 Month: 09 Year: 2013
Accepted Day: 02 Month: 12 Year: 2013
Electronic publication date: Day: 18 Month: 12 Year: 2013
collection publication date: Year: 2013
Volume: 3E-location ID: 3543
PubMed Id:
ID: 3866593
Publisher Item Identifier: srep03543
DOI: 10.1038/srep03543
Physical key-protected one-time pad
Roarke Horstmeyera
Benjamin Judkewitz
Ivo M. Vellekoop
Sid Assawaworrarit
Changhuei Yang
1Departments of Electrical Engineering and Bioengineering, California Institute of Technology, Pasadena, CA 91125
2Biomedical Photonic Imaging Group, MIRA Institute for Biomedical Technology and Technical Medicine, University of Twente, P.O. Box 217, 7500 AE Enschede, the Netherlands
aroarke@caltech.edu
One-time pads are commonly acknowledged as the holy grail of cryptography, but have limited application in modern ciphers. In practice, an unbreakable one-time pad (OTP) protocol requires storage of a large and random key that must remain absolutely safe against malicious attempts to copy it. As demonstrated by numerous recent database breaches, key storage is inherently vulnerable when digital electronic memory is used. Beyond surreptitious attacks via malicious software, digital electronic hardware is also susceptible to physically invasive threats, . Discrete reset, imaging and freezing attacks can easily recover partial or entire keys. In this work, we present a new optical system and communication protocol that allows two parties to securely share gigabits of statistically random OTP keys without electronically saving any sensitive key information. Each key is derived by optically probing the randomness contained within a uniquely complex physical structure and keys are shared with OTP-strong security (i.e., eavesdropping is theoretically impossible). This novel method is extraordinarily resilient to malicious duplication attempts and is capable of securely storing communication keys at an unprecedented density. Our scheme may additionally extend to public key-based protocols, which, as photonic devices begin to solve an increasing number of integrated circuit bottlenecks, indicates volumetric scattering as a natural and efficient communication key database.
Prior optical methods of establishing encrypted two-party communication include classical spatial and temporal, , , ,
setups, as well as quantum key distribution (QKD). Each of these approaches, including the unconditionally secure connection offered by QKD, must electronically save its keys, . Developing a portable key storage medium that protects against the various threats, , , ,
that currently frustrate conventional electronic memory will undoubtedly improve mobile communication security, . Attempts at safeguarding electronic memory have applied the inherent randomness within an integrated circuit, , , FPGA or RFID chip to implement what is often referred to as a physical unclonable function (PUF). Optical scattering-based PUF devices, , ,
have also been developed to help eliminate insecure electronics, but primarily aim to create keys for terminal-based identification and authentication. All previously demonstrated PUF setups exhibit an extremely limited bit capacity – reproducible keys are on the order of kilobits.
Our work using optical scattering differs from these prior investigations in three primary regards. First, we are interested in storing keys for information-theoretically safe communication, not for identification or authentication. Second, given this new goal, we report an innovative approach for implementing an optical scattering-based communication PUF (CPUF) that can reproducibly generate gigabits, as opposed to kilobits, of statistically random keys. Third, a secure connection is only achieved after realizing some form of synchronization between the key outputs of two uniquely independent PUF devices, which constitute the encryption systems at each end of the communication line. We report a novel procedure to link the randomness enclosed by two unique physical objects without revealing any directly useful information to an adversary, which in combination with a pair of our CPUF devices allows establishment of a physically secured OTP link.
Security expectations
Before delving into specifics, we first briefly outline the operation and security requirements of a successfully formed CPUF channel (see ). To communicate, two users, Alice and Bob, will first connect their personal CPUF devices over a known secure connection (e.g., by physically meeting, or by using QKD) to generate a shared random key. Once separate and mobile, they may safely exchange encrypted messages over any public channel until all shared key bits are exhausted. The basis of one-time pad cryptography stipulates that unconditional security is guaranteed only if Alice and Bob mix every message bit with an ideally random key bit without any key re-use. Throughout this paper, we assume that any key bits statistically indistinguishable from ideally random bits will sufficiently fulfill this criterion. Besides offering the OTP's unconditionally strong encryption, a “physically secure” CPUF link must meet the following requirements: first, its security must not depend upon any electronically stored data. While electronic memory may be used, no key or message fragment may be determined via a software or hardware attack targeting its contents. Second, a malicious third party (Eve) with temporary access to a CPUF must not be able to efficiently copy or model its contents. The “unclonable” nature of the CPUF's volumetric scatterer, as defined in [], satisfies this criterion. Third, if Eve steals a device she must not be able to effectively send or receive messages. Unlike any other secure communication setup our CPUF protocol can meet these strict requirements, with a practical security limit set only by the amount of time it takes to mathematically characterize the highly complex structure of its volumetric scatterer.
Device setup
We satisfy the above security expectations by storing random keys within the optical device outlined in . To generate a key, we first illuminate a volumetric scattering medium with a random coherent optical wavefront defined by a spatial light modulator (SLM) (). An output field emerges with a profile that depends on both the SLM-defined input wavefront and the medium's random distribution and orientation of scattering particles. A designed aperture mask then shapes the output field before it propagates to an attached CMOS sensor. The mask is patterned to ensure the output speckle follows Markov statistics – an important condition for effective random key generation. A combinatorially large space of possible wavelength-scale interactions enables detection of many mutually uncorrelated speckle field outputs from a set of different SLM phase profile inputs. We demonstrate how over 10 gigabits of randomness may be optically extracted from within a 2 mm3 volume. Optically addressing the PUF scatterer with an array of SLM pixels is the primary experimental insight enabling extraction of multiple orders of magnitude more bits than any prior work.
We can mathematically describe this large amount of extractable physical randomness by representing optical scattering with a random complex Gaussian transmission matrixT (). The output scattered field created by displaying the ith random SLM phase pattern pi may be described by ui = T · pi. After the sensor detects the output field's intensity ri ≡ |ui|2, a fixed whitening and noise removal operation W is applied to the speckle pattern to create a statistically verified random and repeatable key ki (). The SLM pattern pi and output key ki are thus connected by,
[Formula ID: m1]
The projection of optical field pi into the random matrix T, uniquely defined by the volumetric scatterer within each CPUF device, imparts key ki with its unclonable security.
Physically secure protocol
A set of n random keys k1..n(A) generated by Alice's CPUF, along with a corresponding key set k1..n(B) generated by Bob's CPUF, enable physically secure OTP communication with the assistance of a digitally saved public dictionary (). As described above, Alice and Bob begin by establishing a secure connection between their two devices. While connected, they sequentially probe their scatterers with the same set of n random SLM phase patterns p1..n, respectively detecting key sets k1..n(A) and k1..n(B) following
(). Key sets k1..n(A) and k1..n(B) reflect each device's unique transmission matrix TA and TB but remain synchronized through Alice and Bob's shared use of SLM set p1..n. Without leaving any digital trace of an individual key, Alice and Bob populate a public dictionary with each SLM pattern pi paired with the digital XOR of the two keys it generates, ki(A)
ki(B), for 1 ≤ i ≤ n. An eavesdropper will gain no information about an individual key from this saved XOR “key-mixture”, since it takes the form of a secure OTP ciphertext.
Once mobile at a later time tc, Alice may send Bob an encrypted message m by first randomly selecting an unused pattern pi from the public dictionary to re-create key ki(A) (). Then, Alice may use this key to create and send an XOR-encrypted ciphertext c, where c = ki(A)
m (here we assume ki(A) and m are the same length – longer messages are encrypted by concatenating multiple keys). To complete the protocol, Alice must also send Bob the index i of the SLM pattern pi she displayed, which need not be encrypted.
Bob decrypts Alice's ciphertext using both his CPUF as well as the public dictionary (). He displays pi to optically regenerate key ki(B), and accesses dictionary entry i to obtain the corresponding key-mixture [ki(A)
ki(B)]. The decoded message is then obtained by an XOR of these two sequences with the received ciphertext:
[Formula ID: m2]
The total number of secure bits N that Alice and Bob may share is proportional to the product of the number of saved key-mixtures n and the number of bits within each key |k|. Factors that limit N include display and sensor resolution, scatterer size, and allowed setup time ().
The security of the above protocol relies upon the CPUF key sets following what Shannon defines a purely random process. Possible deviations from pure randomness fall into three categories: correlated bits within the same key, correlations between keys, and the introduction of noise between keys generated at time t0 and at time tc. The sparse projection operator W overcomes such deviations to create keys that asymptotically approach information-theoretic security by sacrificing an increasing number of available encryption bits. In practice, W's bit reduction factor is selected such that each CPUF key set k1..n, viewed as one multi-gigabit random sequence, passes all tests contained within the Diehard and National Institute of Science and Technology (NIST) statistical random number generator test suites. These two test packages are commonly accepted as the standards for random sequence certification. While often used to ensure the suitability of pseudo-random generators for nearly all cryptographic applications, they also effectively verify physical randomness generation, . Performance statistics of the NIST test applied to an example 10-gigabit CPUF key set are presented in . Diehard test results for the same key set are included in . Finally, context-tree weighting (CTW) compression offers a third independent strategy to thoroughly verify the randomness of PUF-produced keys. Applying the same CTW algorithm in [] to an example 1-gigabit CPUF key set generates a completely uncompressed output (i.e., 0 bits are redundant, indicating the average entropy-per-bit is 1).
offers further details regarding the above three statistical tests and the specific parameters used to extract each multi-gigabit key set.
Experiment
The CPUF devices used in experiment each contain a 2 megapixel transmissive phase SLM imaged onto opal-diffusing glass, serving as our highly random scatterer. A 2 cm light guide (to increase the average detected speckle size) connects the scatterer to a 4.9 megapixel CMOS detector. During public dictionary setup, we display n = 5,000 different random phase patterns p to generate 174.4 gigabits of raw speckle data from two CPUFs, which is reduced via the sparse matrix operator W to the N = 10 gigabits of randomness statistically verified in . The approximate theoretical limit of 150 gigabits of randomness per CPUF link may be achieved using a thicker volumetric scatterer, currently limited to 0.5 mm for optical stability purposes. Improved-resolution SLM and CMOS arrays may allow random bit densities to eventually reach 1 terabit/mm3. These two bit density limits are both derived in .
Experimental communication between two CPUFs following our physically secure OTP protocol is demonstrated tc = 24 hours after public dictionary setup in . Due to the slight drift of scatterers, message noise is introduced upon decryption. For example, direct application of
to decrypt a standard 40-megabit ciphertext after a 24-hour delay produces a message with a 0.4 bit-error-rate (BER). Borrowing concepts from the area of fuzzy commitment, we can use error correction codes to reduce this noise without impacting protocol security. However, the application of error correction will also reduce the total number of securely transmittable bits by a fixed fraction, known as the code rate. For example, a simple error correction strategy based on a code-offset construction with repetition coding (code rate = 0.025) improves the average message BER to 0.21. A more computationally demanding BCH coding strategy (code rate = 0.035) improves this average BER to 0.17. We can estimate our CPUF setup's maximum achievable code rate, independent of a specific error-correction strategy, using the CTW algorithm mentioned above. Following [], an independent mutual information estimate of our tested 40-megabit encryption and decryption keys sets our code rate upper bound at 0.18, indicating that 18% of our 10-gigabit key sets may lead to noise-free secure communication. Future work will attempt to reduce inter-key noise and identify an optimal error correction strategy to reach the code rate upper bound without leaking any sensitive information.
Discussion
By linking two physical reservoirs of randomness without relying upon any secure electronic storage, our CPUF principle fundamentally transforms how two parties can establish an ideally protected communication link. While the unconditional algorithmic security of the proposed protocol is well understood, the CPUF device's physical security is slightly harder to systematically analyze. To begin, given an appropriate average scattering particle size and density, the odds of creating or finding two unique CPUF devices that share an overlapping key sequence are astronomically low (approaching 2-|k| for an ideal scattering volume). Furthermore, attempts to maliciously determine keys through physically probing a CPUF's unclonable scattering volume will irreversibly alter its optical response and render its protocol ineffective. In addition to utilizing scatterer storage, our protocol also relies upon a limited number of digital electronic operations that may be subject to physical scrutiny. Since no permanent digital memory is used (except to hold the unconditionally secure key-mixture), the rate of any electronic attack is fundamentally limited by the optical transfer speed between the scatterer and an accurate CMOS sensor detection, which we define as the maximum key generation rate available to Alice and Bob.
Assuming an eavesdropper Eve can undetectably steal a device, the above limitations set our current CPUF protocol's functional lifetime upper bound at approximately 50 hours. This lifetime is fixed by the approximate time an eavesdropper will require to mathematically characterize the random structure of an ideally operating CPUF at the current capture rate of ~1.5 seconds per key. Faster capture is not possible due to induced scatterer heating (see ). This functional lifetime scales linearly with the device's achievable key space N, which may be easily increased by at least an order of magnitude with a corresponding improvement in sensor and SLM resolution. Scatterer heating may likewise be used advantageously to reset or destroy each CPUF, which makes it impossible for Eve to recover any previously communicated message.
Through appropriate channel monitoring, it is also possible for Eve to use a stolen device to directly recover previously communicated messages. To prevent such an attack, Alice and Bob may adopt a public-key protocol to computationally protect their shared screen patterns from quick readout. As detailed in , simply replacing each SLM pattern pi in their shared dictionary with a derived private key PK[pi] offers a fundamental advantage: given Alice's device, Eve must either contact Bob to determine each SLM pattern PK[pi] to use as a probe, or attempt to computationally recover each pattern PK[pi] by overcoming the discrete logarithm problem. This simple modification 1) compels Eve to successfully decrypt each SLM pattern before being able to recover the previously transmitted message associated with it, and 2) forces Eve to measure the full scattering matrix T to determine any future communicated message. While no longer tied to unconditional security, protecting the CPUF's multi-megabit probe functions p with traditional cryptographic protocols is a unique feature of our device's architecture. We expect this fusion of practical digital security principles with physical storage (i.e., a form of multi-factor authentication) will be the subject of much future work, and will allow the CPUF to adapt to meet the challenges provoked by any inevitable side-channel attacks.
In conclusion, the demonstrated CPUF system applies optical scattering to access billions of random bits stored within an unclonable volumetric structure. Information-theoretically secure communication is achieved using a modified OTP protocol. While such ideal protection is a good starting point for any new cryptographic mechanism, physical CPUF keys can also extend to public-key exchange, which eliminates an initial secure connection requirement but fails to guarantee OTP-strong security (see ). Compared with a large, electronically saved one-time pad, the CPUF's key is extremely challenging to copy or model and can easily scale to provide terabits of repeatable randomness within a small volume. Embedding the device's digital electronics within its volumetric scattering material will further impede any attempted copy or probe attack. With additional study, we hope the convenient properties of optical scattering can solve enough of the OTP's practical shortcomings to rejuvenate interest in its unbreakable security, even in the presence of infinite computing resources.
Methods summary
One CPUF device uses a spatially filtered and collimated solid-state 532 nm CW laser (Spectra-Physics, Excelsior Scientific 200 mW) to illuminate a transmissive SLM (1920 × 1080 pixel, 1 × 1.6 cm Epson HDTV LCD, BBS Bildsysteme). The SLM is operated as a phase modulator (without a second polarizer). The scatterer-detector CPUF segment is composed of four main components that are fastened together using an epoxy to minimize any movement with respect to one another. First, the base of the CPUF is a 2.2 μm, 2592 × 1944 CMOS pixel array (The Imaging Source, Micron CMOS MT9P031) with USB readout to a desktop computer. Second, a glass light guide (1.24 cm Quartz disk, Mcmaster-Carr 1357T62) is fixed to the surface of the CMOS protective glass. Third, a custom-printed amplitude-modulating mask (Kodak LVT-exposed on film at 2032 dpi, Bowhaus Printing, 5 mm × 5 mm) is attached to the glass light guide to serve as the speckle-shaping aperture. The aperture size is designed to be approximately 1 mm across, ensuring the average speckle size extends across 5 sensor pixels, enhancing speckle image stability. The apodizing mask follows a 2D-separable Cauchy distribution to ensure the speckle exhibits the required properties of a Markov random process (see ). 99% of the mask's transmitted light is contained within its central 1.2 mm2 area. Fourth, the volumetric scattering material – opal diffusing glass with 0.5 mm scattering volume thickness (Edmund Optics NT46-645) – is fixed above the aperture mask.
Key acquisition and processing
A low laser power (~0.2 μW) was used to illuminate each CPUF, preventing speckle pattern decorrelation from material heating but requiring a ~1.5 second image exposure time. Image capture and SLM screen control were driven through a Matlab interface. After capture, the speckle was transformed into a 1D vector and whitened into a key via multiplication with a matrix W (detailed in ). One large sparse W is stored locally on a desktop computer for use by two CPUF devices, along with the public dictionary containing the shared set of n binary random SLM patterns and the XOR key-mixtures from connection setup. W need not be unique for each CPUF device. Furthermore, its contents may be known publically without any loss of protocol security. Each binary SLM pattern was selected uniformly at random from [0, π] to minimize the probability of key collision. Communication was experimentally achieved between two similarly constructed CPUF devices by populating a public dictionary, waiting 24 hours, and then using the same optical setup to execute the protocol outlined in . Specific encrypt-decrypt parameters for the transmitted messages in
are outlined in , where each message contains 0.4 megabits after applying error correction, as detailed in .
Author Contributions
R.H., B.J. and I.V. and C.Y. conceived and developed the initial idea together. I.V. conceived the final protocol. R.H. designed the experiment, built the setup, and collected the data. R.H. and S.A. performed data and security analysis. All authors collectively wrote the manuscript.
Supplementary Material
Supplementary Information
Supplementary Text
The authors thank Ying Min Wang for constructive discussions, as well as Mark Harfouche and Richard Chen for helpful manuscript feedback. R.H. acknowledges support in part by the National Defense Science and Engineering Graduate (NDSEG) Fellowship Program. B.J. is recipient of the Sir Henry Wellcome Fellowship by the Wellcome Trust.
References
Shannon C.,Communication theory of secrecy systems. Bell Syst. Tech. J.28, 656–715 (Year: 1949).
Gennaro R.,, Lysyanskaya A.,, Malkin T.,, Micali S., & Rabin T.,Algorithmic tamper-proof (ATP) security: theoretical foundations for security against hardware tampering. Lect. Notes Comput. Sc.–277 (Year: 2004).
Anderson R., & Kuhn M.,Tamper resistance – a cautionary note. Proceedings of the 2nd USENIX Workshop on Electronic Commerce1–11 (Usenix Association, Berkeley, Year: 1996).
Anderson R., & Kuhn M.,Low cost attacks of tamper resistant devices. Lect. Notes Comput. Sc.–136 10.1007/BFb0028165 (Year: 1998).
Skorobogatov S., & Anderson R.,Optical fault induction attacks. Lect. Notes Comput. Sc. (Year: 2003).
Samyde D.,, Skorobogatov S.,, Anderson R., & Quisquater J. J.,On a new way to read data from memory. Proceedings of the 1st International IEEE Security in Storage Workshop65–69; 10.1109/SISW. (Year: 2002).
Matoba O.,, Nomura T.,, Perez-Cabre E.,, Millan M. S., & Javidi B.,Optical techniques for information security. Proc. IEEE97,
(Year: 2009).
Scheuer J., & Yariv A.,Giant fiber lasers: a new paradigm for secure key distribution. Phys. Rev. Lett.97, 140502 (Year: 30
Zadok A.,, Scheuer J.,, Sendowski J., & Yariv A.,Secure key generation using an ultra-long fiber laser: transient analysis and experiment. Opt. Express16, 1 (Year: 76
Goedgebuer J. P.,, Larger L., & Porte H.,Optical cryptosystem based on synchronization of hyperchaos generated by a delayed feedback tunable laser diode. Phys. Rev. Lett.80,
(Year: 1998).
Uchida A.,et al.Fast physical random bit generation with chaotic semiconductor lasers. Nat. Photonics2, 728–732 (Year: 2008).
Kanter I.,, Aviad Y.,, Reidler I.,, Cohen E., & Rosenbluh M.,An optical ultrafast random bit generator. Nat. Photonics4, 58–61 (Year: 2010).
Bennett C. H., & Brassard G.,Quantum public key distribution system. IBM Tech. Discl. Bull.28,
(Year: 1985).
Scarani V.,et al.The security of practical quantum key distribution. Rev. Mod. Phys.81,
(Year: 2009).
Ursin R.,et al.Entanglement-based quantum communication over 144 km. Nat. Phys.3, 481–486 (Year: 2007).
Tuyls P.,et al.Read-Proof Hardware from Protective Coatings. Lect. Notes Comput. Sc.–383 (Year: 2006).
NIST 2001 Security Requirements for Cryptographic Modules, FIPS PUB 140-2 (NIST, Gaithersburg, MD, Year: 2011).
Lim D.,et al.Extracting secret keys from integrated circuits. IEEE Trans. VLSI Syst.13,
(Year: 2005).
Gassend B.,et al.Controlled physical random functions and applications. ACM Trans. Inform. Syst. Se.10, 15–27 (Year: 2008).
Majzoobi M.,, Koushanfar F., & Potkonjak M.,Techniques for design and implementation of secure reconfigurable PUFs. ACM Trans. Reconfig. Technol. Syst.2, 5–11 (Year: 2009).
Guajardo J.,, Kumar S. S.,, Schrijen G., & Tuyls P.,FPGA intrinsic PUFs and their use for IP protection. Lect. Notes Comput. Sc. (Year: 2006).
Bolotnyy L., & Robins G.,Physically Unclonable Function-Based Security and Privacy in RFID Systems. Proceedings of the 5th IEEE International Conference on Pervasive Computing and Communications, 211–218; 10.1109/PERCOM.2007.26 (Year: 2007).
Pappu R.,, Recht B.,, Taylor J., & Gershenfeld N.,Physical one-way functions. Science297,
Pappu R.,Physical One-Way Functions, Ph.D. dissertation, Massachusetts Institute of Technology (Year: 2001).
Skoric B.,, Tuyls P., & Ophey W.,Robust key extraction from physical unclonable functions. Lect. Notes Comput. Sc.–422 (Year: 2005).
Tuyls P.,, Skoric B., & Kevenaar T.. Security with Noisy Data (Springer-Verlag, London, Year: 2007).
Horstmeyer R.,, Chen R.,, Judkewitz B., & Yang C.,Markov speckle for efficient random bit generation. Opt. Express20, 2 (Year: 94
van Rossum M. C. W., & Nieuwenhuizen T. M.,Multiple scattering of classical waves: microscopy, mesoscopy and diffusion. Rev. Mod. Phys.71, 313–369 (Year: 1999).
Zhou H., & Bruck J.,Linear extractors for extracting randomness from noisy sources. Proceedings of the 2011 IEEE International Symposium on Information Theory, ; 10.1109/ISIT. (Year: 2011).
Marsaglia G.,DIEHARD: A battery of tests of randomness. &http://stat.fsu.edu/pub/diehard& [Accessed September 15th, 2013] (Year: 1996).
Rukhin A.,et al.A statistical test suite for random and pseudorandom number generators for cryptographic applications. (Special Publication 800-22 Revision 1, National Institute of Standards and Technology, 2008); available at &http://csrc.nist.gov/publications/PubsSPs.html&.
Ignatenko T.,, Schrijen G. J.,, Skoric B.,, Tuyls P., & Willems F. M. J.,Estimating the secrecy rate of physical unclonable functions with the context-tree weighting method. Proceedings of the 2006 IEEE International Symposium on Information Theory, 499–503; 10.1109/ISIT. (Year: 2006).
Dodis Y.,, Reyzin M., & Smith A.,Fuzzy extractors: How to generate strong keys from biometrics and other noisy data. Proceedings of EUROCRYPT 3–540 (Year: 2004).
Yu M., & Devadas S.,Secure and robust error correction for physical unclonable functions. IEEE Des. Test Comput.27, 48–65 (Year: 2010).
Article Categories:Article
Previous Document:&
Next Document:&}