# Intrinsic Rowhammer PUFs: Leveraging the Rowhammer Effect for Improved   Security

**Authors:** Andr\'e Schaller, Wenjie Xiong, Nikolaos Athanasios Anagnostopoulos,, Muhammad Umair Saleem, Sebastian Gabmeyer, Stefan Katzenbeisser, Jakub, Szefer

arXiv: 1902.04444 · 2019-02-13

## TL;DR

This paper introduces a novel intrinsic PUF based on the Rowhammer effect in DRAM, which uses bit flips caused by rapid row access to generate device-specific fingerprints, offering a practical security primitive.

## Contribution

It presents the first positive use of the Rowhammer effect to design a memory-based PUF leveraging existing hardware without modifications.

## Key findings

- The Rowhammer PUF exhibits unique, device-specific responses.
- It can be reliably evaluated on commercial off-the-shelf devices.
- The PUF meets key security properties for practical deployment.

## Abstract

Physically Unclonable Functions (PUFs) have become an important and promising hardware primitive for device fingerprinting, device identification, or key storage. Intrinsic PUFs leverage components already found in existing devices, unlike extrinsic silicon PUFs, which are based on customized circuits that involve modification of hardware. In this work, we present a new type of a memory-based intrinsic PUF, which leverages the Rowhammer effect in DRAM modules; the Rowhammer PUF. Our PUF makes use of bit flips, which occur in DRAM cells due to rapid and repeated access of DRAM rows. Prior research has mainly focused on Rowhammer attacks, where the Rowhammer effect is used to illegitimately alter data stored in memory, e.g., to change page table entries or enable privilege escalation attacks. Meanwhile, this is the first work to use the Rowhammer effect in a positive context: to design a novel PUF. We extensively evaluate the Rowhammer PUF using commercial, off-the-shelf devices, not relying on custom hardware or an FPGA-based setup. The evaluation shows that the Rowhammer PUF holds required properties needed for the envisioned security applications, and could be deployed today.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1902.04444/full.md

## Figures

6 figures with captions in the complete paper: https://tomesphere.com/paper/1902.04444/full.md

## References

20 references — full list in the complete paper: https://tomesphere.com/paper/1902.04444/full.md

---
Source: https://tomesphere.com/paper/1902.04444