Symmetric Authentication - Use Case Example

Last modified by Microchip on 2023/11/09 08:54

Authentication - to prove that something is real, true, or genuine. 

In terms of computer security, it is a process in which two entities exchange information to authenticate the identity of the other.

In this use case example, we will authenticate an object. It can be an accessory, peripheral, battery, or cartridge. Generally, an object that is removable and replaceable by the consumer. The purpose of authenticating an object is to ensure that it is genuine and it is authorized to connect to a product. Another purpose is to prevent cloning and counterfeiting.

This method avoids the need for an Internet connection and white (or black) list. A white list is a lookup table for identifying approved units. A black list is a lookup table for identifying non-approved units.

This method also allows for a limited number of uses. If the object is to only be used a limited number of times, a counter counts the number of uses. Once the specified number of uses has been reached, authentication ceases and the object can no longer be used.

Symmetric authentication uses symmetric key algorithms (also known as secret key algorithms).

The secrecy of the Parent Key is critical to this method. A compromised Parent Key compromises the entire system of products. Hardware tamper protection is highly recommended. It is a best practice to limit the distribution of the Parent Key to an absolute minimum.


The Provisioning Process (Factory Setup)

The Authority creates a Secret Key which will be used as the Parent Key for the system.

The Parent Key is sent to each Manufacturing Module. Each manufacturing site will have its own Manufacturing Module.

Parent Key is sent to each Manufacturing Module

FIGURE 1: Authenticating the Manufacturing Module

The unique serial number of the end product Peripheral is sent to the Manufacturing Module.
The Manufacturing Module performs a hash function on the unique serial number and the Parent Key which creates a Derived Key uniquely associated with the end product Peripheral. The Derived Key is loaded into the End Product.

The device which will act as the Host in the field needs to have knowledge of the Parent Key.​

The Parent Key stored in the Host needs to be protected from being copied or modified.

This completes the provisioning stage done during the time of manufacture.

Provisioning stage complete

FIGURE 2: Authenticating the End Product at Manufacture Time


The Authentication Process (Running in the field)

The next two figures show the run-time authentication process the Host uses to prove that the Peripheral is genuine. All aspects of the authentication process are done through runtime firmware.

The Host must now recreate the Derived Key, which is unique to this Peripheral. The Host requests the unique serial number of the Peripheral and performs a hash function with the Parent Key which creates a Derived Key uniquely associated with the end product Peripheral.

Since this is the exact same process done during the time of manufacturing, the Host Derived Key should match the Peripheral Derived Key.
Both the Host and the Peripheral now share a secret symmetric key unique to the Peripheral.
The Host generates a random challenge which is sent to the Peripheral. Both the Peripheral and the Host perform a Hash function on the random challenge and their own Parent Key

The Host asks for the result from the Peripheral and compares it against the result it generated. If the two results match, then the Peripheral is genuine.

Host asks for the result from the Peripheral

FIGURE 3: Authenticating the Peripheral

If the Peripheral should only be used a limited number of times, a monotonic counter is decremented each time an authentication occurs. When the counter reaches zero, no more hashing results are produced. The device cannot be authenticated and therefore should be disposed and replaced.

monotonic counter is decremented

FIGURE 4: Authenticating the Peripheral for Limited Number of Uses