High-Efficiency Parallel Cryptographic Accelerator for Real-Time Guaranteeing Dynamic Data Security in Embedded Systems

Zhang, Zhun; Wang, Xiang; Hao, Qiang; Xu, Dongdong; Zhang, Jinlei; Liu, Jiakang; Ma, Jinhui

doi:10.3390/mi12050560

Cited by 11 publications

(7 citation statements)

References 36 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, they used a simple hardware random number generator, which makes it difficult to adequately secure the ciphertext. Researchers in our lab proposed an efficient cryptographic accelerator that could protect dynamic data security of embedded systems [25]. After that, they proposed two post-quantum cryptographic algorithms that could improve higher levels of cryptographic protection for critical data.…”

Section: Encrypt the Branch Informationmentioning

confidence: 99%

“…However, although these algorithms have extremely high security and can defend against quantum attacks, they have high resource overhead, long encryption and decryption times, and are not suitable for branching information. Our team has also designed the hardware accelerator based on traditional cryptographic algorithms such as AES-GCM [25]. However, this module is more suitable for confidentiality protection applications with large amounts of data and has high resource overhead.…”

Section: Btb and Bht Based On Dynamic Isolationmentioning

confidence: 99%

See 1 more Smart Citation

A Hardware Security Protection Method for Conditional Branches of Embedded Systems

Hao,

Xu,

Qin

et al. 2024

Preprint

View full text Add to dashboard Cite

The branch prediction units (BPUs) generally have security vulnerabilities, which can be used by attackers to obtain the execution status, jump directions, and jump address of conditional branches, and the existing protection methods cannot defend against these attacks. Therefore, this article proposes a hardware security protection method for conditional branches of embedded systems. This method calculates the number of updates to the branch target buffer (BTB). When it exceeds the threshold, BTB is locked to prevent attackers from analyzing the execution status of branches based on the time difference of whether BTB is updated. Moreover, the hybrid physical unclonable function (PUF) circuit is designed to provide confidentiality protection for the jump directions, jump addresses, and their indexes, preventing attackers from stealing these critical data. If these mechanism fails and attackers successfully tamper with conditional branches, this paper proposes a control flow integrity (CFI) protection mechanism based on branch labels to timely detect tampering with instruction codes, jump addresses, and jump directions. The proposed method is implemented and tested on FPGA. The experimental results show that this method can achieve fine-grained security protection for conditional branches, with about 5.4% resource overhead and less than 5.5% performance overhead.

show abstract

Section: Encrypt the Branch Informationmentioning

confidence: 99%

Section: Btb and Bht Based On Dynamic Isolationmentioning

confidence: 99%

A Hardware Security Protection Method for Conditional Branches of Embedded Systems

Hao,

Xu,

Qin

et al. 2024

Preprint

View full text Add to dashboard Cite

show abstract

“…e two-stage detection algorithm concept is as follows: first, employ algorithm for location information [14]; secondly, produce classification for category information. According to the proposed model, the focus is on real-time detection [15]. e single-stage detection method introduces a novel concept: the dynamic multitarget image in front of the vehicle is transformed into network output [16] by returning the category of bounding box position in the output layer [17] and transforming multitarget detection problem to regression problem by improving the detection speed [18][19][20].…”

Section: Algorithm Principle and Optimizationmentioning

confidence: 99%

A Dynamic Multitarget Detection Algorithm in front of Vehicle Based on Embedded System and Internet of Things

Dou

Wang

2022

Scientific Programming

View full text Add to dashboard Cite

There are few studies for the classification detection and dynamic multitarget detection of the targets in front of vehicles. In order to solve this problem, a dynamic multitarget detection algorithm is proposed. First, a dynamic multitarget detection with displacement at any time is suggested; secondly, a multitarget detection algorithm based on improved You Only Look Once version 3 (YOLOv3) is proposed for the detection of multitarget high probability risk events in front of the vehicle. The YOLOv3 algorithm model is a lightweight backbone network that uses embedded real-time detection technologies. In this paper, we use a lightweight Mobilenetv2 to replace Darknet-53 for feature extraction. Moreover, an optimizer is used for multiobjective feature extraction, group normalization, and multiobjective feature extraction. The results show that in comparison with the original YOLOv3 algorithm, the detection leakage rate of the improved YOLOv3 multitarget detection algorithm is less than 5%, and the amount of model parameters in this paper is reduced by 95% as compared to the traditional data and CPU intertime is reduced to 78%.

show abstract

“…However, some references pointed out that PUF circuits had difficulty resisting machine learning (ML) attacks [ 21 ]. Moreover, we attempted to use the higher security cryptographic algorithms [ 11 , 12 , 22 ], but the performance and resource overhead of these cryptographic circuits were significant, which made it difficult to achieve confidentiality protection for branch information in lightweight embedded processors.…”

Section: Introductionmentioning

confidence: 99%

A Hardware Security Protection Method for Conditional Branches of Embedded Systems

Hao,

Xu,

Qin

et al. 2024

Micromachines

Self Cite

View full text Add to dashboard Cite

The branch prediction units (BPUs) generally have security vulnerabilities, which can be used by attackers to tamper with the branches, and the existing protection methods cannot defend against these attacks. Therefore, this article proposes a hardware security protection method for conditional branches of embedded systems. This method calculates the number of branch target buffer (BTB) updates every 80 clock cycles. If the number exceeds the set threshold, the BTB will be locked and prevent any process from tampering with the BTB entries, thereby resisting branch prediction analysis (BPA) attacks. Moreover, to prevent attackers from stealing the critical information of branches, the method designs the hybrid arbiter physical unclonable function (APUF) circuit to encrypt and decrypt the directions, addresses, and indexes of branches. This circuit combines the advantages of double APUF and Feed-Forward APUF, which can enhance the randomness of output response and resist machine learning attacks. If attackers still successfully tamper with the branches and disrupt the control flow integrity (CFI), this method detects tampering with the instruction codes, jump addresses, and jump directions in a timely manner through dynamic and static label comparison. The proposed method is implemented and tested on FPGA. The experimental results show that this method can achieve fine-grained security protection for conditional branches, with about 5.4% resource overhead and less than 5.5% performance overhead.

show abstract

High-Efficiency Parallel Cryptographic Accelerator for Real-Time Guaranteeing Dynamic Data Security in Embedded Systems

Cited by 11 publications

References 36 publications

A Hardware Security Protection Method for Conditional Branches of Embedded Systems

A Hardware Security Protection Method for Conditional Branches of Embedded Systems

A Dynamic Multitarget Detection Algorithm in front of Vehicle Based on Embedded System and Internet of Things

A Hardware Security Protection Method for Conditional Branches of Embedded Systems

Contact Info

Product

Resources

About