Securing Boot of an Embedded Linux on FPGA

“…In [4], Devic et al implement on FPGA a boot mechanism that precludes kernel modifications using SHA-256 (Secure Hash Algorithm) hash function preventing from replays attacks and supports updates. Three implementations, (last twos based on hardware acceleration mechanisms), are proposed to offer three performance/area overhead trade-offs:…”

“…Cotret et al [2] proposes a latency-efficient alternative for MPSoC based on the ARM AXI bus protocol with flexible security configurations and additional cryptographic features. This work describes further how this solution can be added to the Linux boot protection flow of Devic et al [4] to provide a completely secure chain from bitstream download to runtime application execution: such a system should be able to manage updates of OS and protection of runtime transactions in the target multiprocessor system.…”

“…Unfortunately, there is a security breach in such a flow: an attacker can easily update the Flash memory with a malicious kernel because there is no integrity verification of the Flash. That is the reason why Devic et al [4] add blocks in the previous flow ( Figure 1) to provide a flexible integrity protection layer. In this case, the kernel is copied into the DDR memory.…”

“…Hardware accelerators are also made for providing a user-defined protection layer during the boot of the OS or the execution of the main application running on an embedded system. Devic et al [4] proposed a solution to secure the boot of an embedded Linux on a Xilinx ML605 FPGA platform. In such a solution, designers can securely set a Linux-based embedded system; unfortunately, during runtime execution, there is no additional protection mechanism to protect the system against attacks.…”

“…For instance, an attacker can easily modify memory contents to make the system misbehave or create denial-of-service. This work presents an extension of the work of Devic et al [4] to provide the final user a complete protection flow from bitstream download to runtime applications execution. This paper is organized as follows.…”

Security enhancements for FPGA-based MPSoCs: A boot-to-runtime protection flow for an embedded Linux-based system

“…In [4], Devic et al implement on FPGA a boot mechanism that precludes kernel modifications using SHA-256 (Secure Hash Algorithm) hash function preventing from replays attacks and supports updates. Three implementations, (last twos based on hardware acceleration mechanisms), are proposed to offer three performance/area overhead trade-offs:…”

“…Cotret et al [2] proposes a latency-efficient alternative for MPSoC based on the ARM AXI bus protocol with flexible security configurations and additional cryptographic features. This work describes further how this solution can be added to the Linux boot protection flow of Devic et al [4] to provide a completely secure chain from bitstream download to runtime application execution: such a system should be able to manage updates of OS and protection of runtime transactions in the target multiprocessor system.…”

“…Unfortunately, there is a security breach in such a flow: an attacker can easily update the Flash memory with a malicious kernel because there is no integrity verification of the Flash. That is the reason why Devic et al [4] add blocks in the previous flow ( Figure 1) to provide a flexible integrity protection layer. In this case, the kernel is copied into the DDR memory.…”

“…Hardware accelerators are also made for providing a user-defined protection layer during the boot of the OS or the execution of the main application running on an embedded system. Devic et al [4] proposed a solution to secure the boot of an embedded Linux on a Xilinx ML605 FPGA platform. In such a solution, designers can securely set a Linux-based embedded system; unfortunately, during runtime execution, there is no additional protection mechanism to protect the system against attacks.…”

“…For instance, an attacker can easily modify memory contents to make the system misbehave or create denial-of-service. This work presents an extension of the work of Devic et al [4] to provide the final user a complete protection flow from bitstream download to runtime applications execution. This paper is organized as follows.…”

Security enhancements for FPGA-based MPSoCs: A boot-to-runtime protection flow for an embedded Linux-based system

Digital filter implementation over FPGA platform with LINUX OS

Firmware Integrity Protection: A Survey