The ISO 20897 discusses the physically unclonable functions for privacy protection. ISO 20897-1 specifies the security requirements for physically unclonable functions (PUFs). Specified security requirements concern the output properties, tamper-resistance and non-clonability of a single and a batch of PUFs. Since it depends on the application which security requirements a PUF needs to meet, ISO 20897-1 also describes the typical use cases of a PUF.
Note1: Amongst PUF use cases, random number generation is out of scope in ISO 20897-1.
Note2: All of the security requirements defined in ISO 20897-1 are not necessarily quantitatively evaluable.
ISO 20897‑1 on security requirements for physically unclonable functions (PUFs) is useful for:
Cryptographic modules generate a certain class of critical security parameters such as a secret key using a random bit generator within the modules. Such modules can store generated security parameters in embedded non-volatile memory elements. For higher security, a combination of tamper response and zeroization techniques may be used for protecting stored security parameters from active unauthorized attempts of accessing such parameters. However, as reverse-engineering technology advances, the risk of theft of such stored security parameters has become higher than ever.
ISO 20897‑1 defines the security requirement for PUFs and their use cases. This helps you to identify the security risks to PUFs from every potential scenario. Adhering to ISO 20897‑1 guidelines for security requirements of PUFs will help you to improve the encryption of your critical security parameters.
ISO/IEC 20897-1