There are many practical situations in which, by policy, software is supposed to run on a specific hardware instance. This is not only useful to combat piracy, but also in national security situations, such as a battlefield loss of critical technology, where it is paramount that an enemy be unable to rehost the system on a different set of (possibly counterfeit) hardware. To achieve this binding, software vendors use techniques that can easily be foiled through virtualization: Whatever the software expected from the legitimate hardware, can instead be provided by a virtualization layer to fool the software into believing it is running on legitimate hardware. The recently demonstrated feasibility of physically unclonable functions (PUFs) make this attack somewhat harder, in that it is no longer possible to simulate the presence of the hardware in software. If PUF technology is used, carrying out this attack would require modification of the internals of the software to be fooled, a harder task but still possible with moderate effort. We present a way of using PUFs in a manner that makes it significantly harder for the attacker to carry out the attack. We also review the challenges and opportunities for virtualization that PUFs bring.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	M. J. Atallah, E. D. Bryant, and M. R. Stytz. A survey of anti-tamper technologies. CrossTalk: The Journal of Defense Software Engineering 17(11):12--16, 11 2004.
	2	Keith W. Campbell , Michael J. Wiener, DES is not a Group, Proceedings of the 12th Annual International Cryptology Conference on Advances in Cryptology, p.512-520, August 16-20, 1992
	3	Christian S. Collberg , Clark Thomborson, Watermarking, tamper-proffing, and obfuscation: tools for software protection, IEEE Transactions on Software Engineering, v.28 n.8, p.735-746, August 2002  [doi>10.1109/TSE.2002.1027797]
	4	Jorge Guajardo , Sandeep S. Kumar , Geert-Jan Schrijen , Pim Tuyls, FPGA Intrinsic PUFs and Their Use for IP Protection, Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems, September 10-13, 2007, Vienna, Austria  [doi>10.1007/978-3-540-74735-2_5]
	5	J. Guajardo, S. S. Kumar, G. J. Schrijen, and P. Tuyls. Physical unclonable functions and public-key crypto for fpga ip protection. In International Conference on Field Programmable Logic and Applications pages 189--195, 2007.
	6	Bruce Schneier, Applied cryptography (2nd ed.): protocols, algorithms, and source code in C, John Wiley & Sons, Inc., New York, NY, 1995
	7	E. Simpson and P. Schaumont. Offline hardware/software authentication for recon figurable platforms. In L. Goubin and M. Matsui, editors, Proceedings of the 8th Cryptographic Hardware and Embedded Systems Workshop (CHES), Yokohama, Japan volume 4249 of Lecture Notes in Computer Science pages 311--323.Springer, October 2006.
	8	G. Edward Suh , Srinivas Devadas, Physical unclonable functions for device authentication and secret key generation, Proceedings of the 44th annual conference on Design automation, June 04-08, 2007, San Diego, California  [doi>10.1145/1278480.1278484]