A NIC-Host Binding Method for Scalable Authentication via EEPROM Read/Write Access
摘要
As the development of communication networks, mobile nodes or personal workstations are allowed to gain access to the Internet anywhere and at any time. Facing the threats of various malicious attacks, access authentication is the key mechanism to be strengthened because it is mainly used to prevent illegal nodes from accessing network services. Existing access authentication mechanisms often rely on hardware-level binding to prevent attackers from bypassing the authentication system by replacing hardware. However, hardware-level binding often introduces additional hardware cost or requires hardware modifications to the device, hindering its large-scale deployment. In this paper, we propose a host-network interface card (NIC) binding method, which utilizes the read and write operations of the NIC’s Electrically Erasable Programmable Read-Only Memory (EEPROM) to achieve hardware-level binding. This approach runs the binding process via external media to obtain the host’s hardware fingerprint and maintain it in the EEPROM region. The authentication process will use the EEPROM read and write operations to obtain the hardware fingerprint to determine whether the binding relationship is established. Qualitative analysis shows that the proposed approach effectively mitigates security risks while eliminating the need to modify the device hardware, demonstrating good adaptability and the potential for widespread deployment.