| Abstract: | Detection and deterrence of spoofing of user authentication may be
achieved by including a cryptographic fingerprint unit within a hardware
device for authenticating a user of the hardware device. The
cryptographic fingerprint unit includes an internal physically unclonable
function ("PUF") circuit disposed in or on the hardware device, which
generates a PUF value. Combining logic is coupled to receive the PUF
value, combines the PUF value with one or more other authentication
factors to generate a multi-factor authentication value. A key generator
is coupled to generate a private key and a public key based on the
multi-factor authentication value while a decryptor is coupled to receive
an authentication challenge posed to the hardware device and encrypted
with the public key and coupled to output a response to the
authentication challenge decrypted with the private key. |