Tunable FPGA Bitstream Obfuscation with Boolean Satisfiability Attack Countermeasure

Olney, Brooks; Karam, Robert

doi:10.1145/3373638

Cited by 10 publications

(4 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [11,[35][36][37], combinational logic locking schemes dedicated to FPGAs are presented. The basic idea is to insert key bits to the unused inputs of already instantiated LUTs and define the locked logic that corresponds to the wrong values of the key bits by modifying the LUT's truth table.…”

Section: Fpgamentioning

confidence: 99%

FPGA Design Deobfuscation by Iterative LUT Modification at Bitstream Level

Moraitis

Dubrova

2023

J Hardw Syst Secur

View full text Add to dashboard Cite

Hardware obfuscation is a well-known countermeasure against reverse engineering. For FPGA designs, obfuscation can be implemented with a small overhead by using underutilised logic cells; however, its effectiveness depends on the stealthiness of the added redundancy. In this paper, we show that it is possible to deobfuscate an SRAM FPGA design by ensuring the full controllability of each instantiated look-up table input via iterative bitstream modification. The presented algorithm works directly on bitstream and does not require the possession of a flattened netlist. The feasibility of our approach is verified on the example of an obfuscated SNOW 3G design implemented on a Xilinx 7-series FPGA.

show abstract

Section: Fpgamentioning

confidence: 99%

FPGA Design Deobfuscation by Iterative LUT Modification at Bitstream Level

Moraitis

Dubrova

2023

J Hardw Syst Secur

View full text Add to dashboard Cite

show abstract

“…Zhang et al [10] proposed an obfuscation scheme achieved through varying finite field constructions and primitive element representations. A set of quantitatively evaluable metrics are proposed [11], and Olney et al [12] proposed a tunable obfuscation approach from typical bitstream attacks while enabling designers to trade off security with acceptable overhead. Some researchers considered location-based obfuscation: A framework with geo-obfuscation is proposed [13] to protect users' locations during task assignments; A Proactive Topology Obfuscation (ProTO) system that adopts a detect-then-obfuscate framework is proposed [14]; A location obfuscation method [15] is proposed which is robust to privacy inferences by the service provider regarding route source and destination.…”

Section: Related Workmentioning

confidence: 99%

A Smart Obfuscation Approach to Protect Software in Cloud

Yu,

Duan

2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

Cloud computing and edge computing brought more software, which also brought a new danger of malicious software attacks. Data synchronization mechanisms of software can further help reverse data modifications. Based on the mechanisms, attackers can cover themselves behind the network and modify data undetected. Related knowledge of software reverse engineering can be organized as rules to accelerate the attacks, when attackers intrude cloud server to access the source or binary codes. Therefore, we proposed a novel method to resist this kind of reverse engineering by breaking these rules. Our method is based on software obfuscations and encryptions to enhance the security of distributed software and cloud services in the 5G era. Our method is capable of (1) replacing the original assembly codes of the protected program with equivalent assembly instructions in an iteration way, (2) obfuscating the control flow of the protected program to confuse attackers meanwhile keeps the program producing the same outputs, (3) encrypting data to confuse attackers. In addition, the approach can periodically and automatically modify the protected software binary codes, and the binary codes of the protected software are encrypted to resist static analysis and dynamic analysis. Furthermore, a simplified virtual machine is implemented to make the protected codes unreadable to attackers. Cloud game is one of the specific scenarios which needs low latency and strong data consistency. Cheat engine, Ollydbg, and Interactive Disassembler Professional (IDA) are used prevalently for games. Our improved methods can protect the software from the most vulnerable aspects. The improved dynamic code swapping and the simplified virtual machine technologies for cloud games are the main innovations. We inductively learned that our methods have been working well according to the security mechanisms and time complexity analysis. Experiments show that hidden dangers can be eliminated with efficient methods: Execution time and file sizes of the target codes can be multiple times than that of the original program codes which depend on specific program functions.

show abstract

“…This has inspired researchers to develop newer and more sophisticated security protocols, including protocols that are inspired by biology and species diversity. There have been many research endeavors that propose bio-inspired security protocols for the secure deployment of hardware [26,37,59,40] and software [11,4,28], as well as security protocols to protect networks and cyberspace [44,15] and to ensure data privacy and security [22,12]. In general, diversity of a species at the genetic level is necessary for the overall survival of that species.…”

Section: Bio-diversity Inspired Securitymentioning

confidence: 99%

“…For example, given a classiication model for a self driving car, there may be several hundred thousand or even millions of these products in operation, with each one having a similar or identical hardware composition. This has motivated researchers to investigate alternative means of hardware deployment, including mutating or łpatchablež hardware [26,40].…”

Section: Bio-diversity Inspired Securitymentioning

confidence: 99%

Diverse, Neural Trojan Resilient Ecosystem of Neural Network IP

Olney

Karam

2022

J. Emerg. Technol. Comput. Syst.

Self Cite

View full text Add to dashboard Cite

Adversarial machine learning is a prominent research area aimed towards exposing and mitigating security vulnerabilities in AI/ML algorithms and their implementations. Data poisoning and neural Trojans enable an attacker to drastically change the behavior and performance of a Convolutional Neural Network (CNN) merely by altering some of the input data during training. Such attacks can be catastrophic in the field, e.g. for self-driving vehicles. In this paper, we propose deploying a CNN as an ecosystem of variants , rather than a singular model. The ecosystem is derived from the original trained model, and though every derived model is structurally different, they are all functionally equivalent to the original and each other. We propose two complementary techniques: stochastic parameter mutation , where the weights θ of the original are shifted by a small, random amount, and a delta-update procedure which functions by XOR’ing all of the parameters with an update file containing the Δθ values. This technique is effective against transferability of a neural Trojan to the greater ecosystem by amplifying the Trojan’s malicious impact to easily detectable levels; thus, deploying a model as an ecosystem can render the ecosystem more resilient against a neural Trojan attack.

show abstract

Tunable FPGA Bitstream Obfuscation with Boolean Satisfiability Attack Countermeasure

Cited by 10 publications

References 15 publications

FPGA Design Deobfuscation by Iterative LUT Modification at Bitstream Level

FPGA Design Deobfuscation by Iterative LUT Modification at Bitstream Level

A Smart Obfuscation Approach to Protect Software in Cloud

Diverse, Neural Trojan Resilient Ecosystem of Neural Network IP

Contact Info

Product

Resources

About