The Conflicted Usage of RLUTs for Security-Critical Applications on FPGA

Roy, Debapriya Basu; Bhasin, Shivam; Danger, Jean‐Luc; Guilley, Sylvain; He, Wei; Mukhopadhyay, Debdeep; Najm, Zakaria; Ngo, Xuan Thuy

doi:10.1007/s41635-018-0035-4

Cited by 8 publications

(4 citation statements)

References 31 publications

(45 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hardware Trojans and side-channel attacks can damage critical operations and cryptographic keys; hence, secure hardware modules like TEEs and enclaves are essential. Critical computations and cryptographic activities are executed securely in the IC architecture using these trusted hardware modules, assuring data confidentiality, integrity, and authenticity (Roy et al, 2018). ICs with physically unclonable functions (PUFs) and true random number generators (TRNGs) improve cryptographic operations and authentication procedures.…”

Section: Integration Of Trusted Hardware Modulesmentioning

confidence: 99%

Secure VLSI Design: Countermeasures against Hardware Trojans and Side-Channel Attacks

Khair,

Ande,

Goda

et al. 2019

Eng. int. (Dhaka)

View full text Add to dashboard Cite

To counter the growing risks to the integrity of integrated circuits (ICs) from side-channel assaults and hardware Trojans, secure VLSI design is essential. This research aims to understand better how to defend against these attacks by strengthening the security posture of VLSI-based systems. Using a thorough methodology, the study combines rigorous validation procedures, practical implementation strategies, and early integration strategies to create robust security measures. Key conclusions emphasize the significance of proactively integrating countermeasures, utilizing reliable hardware modules, and implementing appropriate validation procedures to manage risks successfully. The value of industry collaboration, regulatory frameworks, and education programs in promoting secure VLSI design techniques is highlighted by policy implications. Stakeholders can improve the security posture of electronic devices, protect vital infrastructure, and guarantee the reliability of VLSI-based systems in an increasingly linked world by addressing constraints and regulatory consequences.

show abstract

Section: Integration Of Trusted Hardware Modulesmentioning

confidence: 99%

Secure VLSI Design: Countermeasures against Hardware Trojans and Side-Channel Attacks

Khair,

Ande,

Goda

et al. 2019

Eng. int. (Dhaka)

View full text Add to dashboard Cite

show abstract

“…Log security events and suspected activity for forensic investigation and incident response. Review audit logs and system operations regularly for data breaches and unauthorized reviewed d access (Roy et al, 2018).…”

Section: Secure Data Transmissionmentioning

confidence: 99%

Secure Programming with SAS: Mitigating Risks and Protecting Data Integrity

Yarlagadda,

Pydipalli

2018

Eng. int. (Dhaka)

View full text Add to dashboard Cite

This article examines the significance of safe programming with SAS (Statistical Analysis System) for risk mitigation and data integrity protection in data-driven environments. The study intends to investigate data protection strategies to improve application security, look at best practices for secure SAS coding, and identify prevalent security threats related to SAS applications. The review process is secondary data, with insights gleaned from online resources, industry reports, conference papers, and academic journals. Important discoveries show that SAS programs frequently have vulnerabilities, including SQL injection, cross-site scripting (XSS), and unsafe data handling. The best practices that have been established encompass data encryption, secure access controls, output encoding, parameterized queries, and input validation. The policy implications emphasize the significance of legislative frameworks for data protection and encouraging instruction in secure programming practices. This report emphasizes how important it is for businesses to use SAS for secure programming to protect sensitive data, abide by data protection laws, and defend against cyberattacks.

show abstract

“…Therefore, malicious modifications of the design, referred to as hardware Trojans (HTs), endanger the security of many applications. On FPGAs, a Trojan might be inserted after manufacturing and testing, i.e., in the untrusted field [1], [2], for instance, by altering the entire configuration (known as bitstream) or via partial reconfiguration. Particularly if the chip foundry can be trusted, this depicts a much more powerful threat model than for ASICs.…”

Section: Introductionmentioning

confidence: 99%

“…They show that on an FPGA, longer signal paths can be realized by instantiating route-thru LUTs, or by modifying the routing in the switch boxes, which results in zero overhead in resource usage, and therefore, is hard to detect. In another effort, Roy et al showed that the reconfigurable LUTs could be exploited to realize HTs with zero payload overheads [2]. Finally, Ng et al demonstrated that integrated sensors inside FPGAs could be deployed as Trojan triggers [1].…”

Section: Introductionmentioning

confidence: 99%

Trojan Awakener: Detecting Dormant Malicious Hardware Using Laser Logic State Imaging

Krachenfels¹,

Seifert²,

Tajik³

2021

Preprint

View full text Add to dashboard Cite

The threat of hardware Trojans (HTs) and their detection is a widely studied field. While the effort for inserting a Trojan into an application-specific integrated circuit (ASIC) can be considered relatively high, especially when trusting the chip manufacturer, programmable hardware is vulnerable to Trojan insertion even after the product has been shipped or during usage. At the same time, detecting dormant HTs with small or zero-overhead triggers and payloads on these platforms is still a challenging task, as the Trojan might not get activated during the chip verification using logical testing or physical measurements. In this work, we present a novel Trojan detection approach based on a technique known from integrated circuit (IC) failure analysis, capable of detecting virtually all classes of dormant Trojans. Using laser logic state imaging (LLSI), we show how supply voltage modulations can awaken inactive Trojans, making them detectable using laser voltage imaging techniques. Therefore, our technique does not require triggering the Trojan. To support our claims, we present two case studies on 28 nm SRAM-and flash-based field-programmable gate arrays (FPGAs). We demonstrate how to detect with high confidence small changes in sequential and combinatorial logic as well as in the routing configuration of FPGAs in a non-invasive manner. Finally, we discuss the practical applicability of our approach on dormant analog Trojans in ASICs.

show abstract

The Conflicted Usage of RLUTs for Security-Critical Applications on FPGA

Cited by 8 publications

References 31 publications

Secure VLSI Design: Countermeasures against Hardware Trojans and Side-Channel Attacks

Secure VLSI Design: Countermeasures against Hardware Trojans and Side-Channel Attacks

Secure Programming with SAS: Mitigating Risks and Protecting Data Integrity

Trojan Awakener: Detecting Dormant Malicious Hardware Using Laser Logic State Imaging

Contact Info

Product

Resources

About