Debug Port Protection Mechanism for Secure Embedded Devices

Park, Keun‐Young; Yoo, Sang Guun; Kim, Juho

doi:10.5573/jsts.2012.12.2.240

Cited by 7 publications

(5 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Stronger authentication schemes, which do not reveal the secret during communication with the chip, are based on challenge-response protocols [21], [22], [23], [24], [25], [26], [27]: In these schemes, upon a request of an entity e ∈ E to access a protected instrument i ∈ I P , the chip provides a non-repeating challenge value and expects the entity to provide an expected response value. The response is calculated from the challenge, the secret k i , and possibly the secret k e , using a specified cryptographic algorithm, e.g.…”

Section: Problem Formulation and Related Workmentioning

confidence: 99%

“…To reduce the amount of online communication, the secure server can also issue credentials which can later be used by the entity to gain offline access to the chip [24]. To limit the number of allowed offline accesses, a similar approach based on authentication tokens was later proposed by the same authors [25]. For provably secure mutual authentication, an application of the Schnorr protocol was proposed recently in [26].…”

Section: Problem Formulation and Related Workmentioning

confidence: 99%

“…However, while it is desired that the access rights are managed at the level of individual on-chip instruments distributed over the system-wide scan infrastructure, the techniques presented in [21], [24], [25], [26] allow access management at the level of 1149.1 TAP instructions only. Finegrained access management for individual instruments can be achieved by connecting each protected instrument with the authorization controller, as proposed in [22], [27].…”

Section: Problem Formulation and Related Workmentioning

confidence: 99%

“…If required, the security of the proposed scheme can be further improved by replacing the underlying challengeresponse protocol with other authentication mechanisms, e.g. based on credentials or authentication tokens, as in [25], or by using the Schnorr protocol, as in [26].…”

Section: Problem Formulation and Related Workmentioning

confidence: 99%

See 3 more Smart Citations

Fine-Grained Access Management in Reconfigurable Scan Networks

Baranowski

Kochte

Wunderlich

2015

IEEE Trans. Comput.-Aided Des. Integr. Circuits Syst.

View full text Add to dashboard Cite

Modern VLSI designs incorporate a high amount of instrumentation that supports post-silicon validation and debug, volume test and diagnosis, as well as in-field system monitoring and maintenance. Reconfigurable scan architectures, as allowed by the novel IEEE Std 1149.1-2013 (JTAG) and IEEE Std 1687-2014 (IJTAG), emerge as a scalable mechanism for access to such on-chip instruments.While the on-chip instrumentation is crucial for meeting quality, dependability, and time-to-market goals, it is prone to abuse and threatens system safety and security. A secure access management method is mandatory to assure that critical instruments be accessible to authorized entities only.This work presents a novel protection method for fine-grained access management in complex reconfigurable scan networks based on a challenge-response authentication protocol. The target scan network is extended with an authorization instrument and Secure Segment Insertion Bits (S 2 IB) that together control the accessibility of individual instruments. To the best of the authors' knowledge, this is the first fine-grained access management scheme that scales well with the number of protected instruments and offers a high level of security. Compared with recent stateof-the-art techniques, this scheme is more favorable with respect to implementation cost, performance overhead, and provided security level.Index Terms-Debug and diagnosis, reconfigurable scan network, IJTAG, IEEE Std 1687, secure DFT, hardware security, instrument protection 0278-0070 (c)

show abstract

Section: Problem Formulation and Related Workmentioning

confidence: 99%

Section: Problem Formulation and Related Workmentioning

confidence: 99%

Section: Problem Formulation and Related Workmentioning

confidence: 99%

Section: Problem Formulation and Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Fine-Grained Access Management in Reconfigurable Scan Networks

Baranowski

Kochte

Wunderlich

2015

IEEE Trans. Comput.-Aided Des. Integr. Circuits Syst.

View full text Add to dashboard Cite

show abstract

“…Another risk is password leakage, especially when all fabricated instances share the same password. Protocol-based schemes use more complex techniques for authentication [18]- [21]. Specifically, a trusted server is used to manage the multi-stage authentication between the user and the device, but has the drawback of requiring network availability.…”

Section: Introductionmentioning

confidence: 99%

Detection of Illegitimate Access to JTAG via Statistical Learning in Chip

Ren¹,

Tavares²,

Blanton³

2015

Design, Automation &Amp; Test in Europe Conference &Amp; Exhibition (DATE), 2015

View full text Add to dashboard Cite

IEEE 1149.1, commonly known as the joint test action group (JTAG), is the standard for the test access port and the boundary-scan architecture. The JTAG is primarily utilized at the time of the integrated circuit (IC) manufacture but also in the field, giving access to internal subsystems of the IC, or for failure analysis and debugging. Because the JTAG needs to be left intact and operational for use, it inevitably provides a "backdoor" that can be exploited to undermine the security of the chip. Potential attackers can then use the JTAG to dump critical data or reverse engineer IP cores, for example. Since an attacker will use the JTAG differently from a legitimate user, it is possible to detect the difference using machine-learning algorithms. A JTAG protection scheme, SLIC-J, is proposed to monitor user behavior and detect illegitimate accesses to the JTAG. Specifically, JTAG access is characterized using a set of specifically-defined features, and then an on-chip classifier is used to predict whether the user is legitimate or not. To validate the effectiveness of the approach, both legitimate and illegitimate JTAG accesses are simulated using the OpenSPARC T2 benchmark. The results show that the detection accuracy is 99.2%, and the escape rate is 0.8%.

show abstract