Extraction of finite state machines from transistor netlists by symbolic simulation

Pandey, Manish; Jain, Alok; Bryant, Randal E.; Beatty, Derek L.; York, Gary; Jain, S.

doi:10.1109/iccd.1995.528929

Cited by 4 publications

(4 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“… can be determined by (5). In (5), N = [(Q 2 Q)× 40%]. sort(S)N denotes the N th element of S, where the elements in S are sorted in ascending order magnitude.…”

Section: E Clustering Of Registersmentioning

confidence: 99%

“…Optimizations and transformations applied at different design abstraction levels impose a natural barrier to recover the original state-space information from the final physical layout or the downstream designs. Because of this, it is claimed that retrieval of the STG or equivalent high-level description of a reasonably large FSM from its circuit netlist is computationally intractable [5]. This postulation is leveraged by adversaries to inflict subtle manipulation on FSM state registers.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Identification of FSM State Registers by Analytics of Scan-Dump Data

Cui

Chang

et al. 2021

IEEE Trans.Inform.Forensic Secur.

View full text Add to dashboard Cite

Big data analytics have gained tremendous successes in mining valuable information in various fields. However, its potential to solve complex problems in hardware security has not been adequately tapped. This paper presents a non-invasive approach to identify the state registers of a finite state machine (FSM) in an integrated chip. The state registers of the FSM are mined from the scan-dump data by exploiting the strongly connected property and chronologically correlated state codes of the FSM. The sequence of data scanned out of each scan register is partitioned into non-overlapping strings of high weighted frequencies by a string-matching algorithm. A coherency between a pair of registers is defined and computed based on the partitioned strings. The dimension of the coherency matrix is first reduced by pruning some registers of low influence by a regression analysis. The registers are then clustered to minimize the within-cluster variances based on their coherency values. The proposed scheme is applied to some IP cores from OpenCores. The experimental results show that our scheme can correctly identify the FSM state registers in most designs with high hit rate.

show abstract

“… can be determined by (5). In (5), N = [(Q 2 Q)× 40%]. sort(S)N denotes the N th element of S, where the elements in S are sorted in ascending order magnitude.…”

Section: E Clustering Of Registersmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Identification of FSM State Registers by Analytics of Scan-Dump Data

Cui

Chang

et al. 2021

IEEE Trans.Inform.Forensic Secur.

View full text Add to dashboard Cite

show abstract

“…6, for the tree of register r1, node 1 is split by the attribute iN and node 2 is split by i2, so the entries in columns iN and i2 of row d1 are filled with '1' and all other columns of row d1 are filled with '0'. The column sum ij for j ∈ [1, N] in the correlation table is the impact for the register rj according to (1). The registers can then be sorted in descending order of impact.…”

Section: )Identification Of Fsm Registersmentioning

confidence: 99%

“…Different abstractions and transforms applied in each design level forms a natural barrier to access the original FSM structure from the synthesized design or physical design. It is hence claimed to be computationally intractable to retrieve the FSM structure of a reasonably large design from the downstream design, such as the netlist [1]. Many security-oriented techniques rely on this argument to insert confidential copyright information into the original design by modifying the FSM design at the higher design abstraction level.…”

Section: Introductionmentioning

confidence: 99%

Identification of State Registers of FSM Through Full Scan by Data Analytics

Cui

Chang

2019

2019 Asian Hardware Oriented Security and Trust Symposium (AsianHOST)

View full text Add to dashboard Cite

Finite-state machine (FSM) is widely used as control unit in most digital designs. Many intellectual property protection and obfuscation techniques leverage on the exponential number of possible states and state transitions of large FSM to secure a physical design with the reason that it is challenging to retrieve the FSM design from its downstream design or physical implementation without knowledge of the design. In this paper, we postulate that this assumption may not be sustainable with big data analytics. We demonstrate by applying a data mining technique to analyze sufficiently large amount of data collected from a full scan design to identify its FSM state registers. An impact metric is introduced to discriminate FSM state registers from other registers. A decision tree algorithm is constructed from the scan data for the regression analysis of the dependency of other registers on a chosen register to deduce its impact. The registers with the greater impact are more likely to be the FSM state registers. The proposed scheme is applied on several complex designs from OpenCores. The experiment results show the feasibility of our scheme in correctly identifying most FSM state registers with a high hit rate for a large majority of the designs.

show abstract