Your search keyword '"Hardware obfuscation"' showing total 147 results

1. LOTUS: A Scalable Framework to Lock Multimodule Designs With One-Time Self-Destructing Key.

Author

Hashemi, Mona, Mohammadi, Siamak, and Carlson, Trevor E.

Abstract

The involvement of external parties in integrated circuit (IC) supply chain has raised a number of security issues, such as the use of device cloning, overproduction, and unauthorized integration/activation. One potential solution to this problem, logic locking, restricts access to the hardware unless the correct key is provided. Existing locking methods target limited attacks and show scalability issues. In this letter we presents LOTUS, a scalable and multilayered locking framework that provides a solution for multimodule designs by employing pseudo-dynamic keys. An important aspect of this work is that it triggers an irreversible failure once an incorrect key is applied. This evaluation demonstrates this letter’s resiliency against various deobfuscation attacks like KC2, AppSAT, OMLA, SAIL, and SCOPE with low overhead. Due to its scalability, low overhead, and destructive-when-wrong structure, LOTUS is a practical solution for large, complex, and safety-critical designs. [ABSTRACT FROM AUTHOR]

Published

2024

2. A Framework for Data Protection of Embedded Systems in IoT Applications

Author

Rajendran, Sreeja, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Oneto, Luca, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Tan, Kay Chen, Series Editor, Kumar Jain, Pradip, editor, Nath Singh, Yatindra, editor, Gollapalli, Ravi Paul, editor, and Singh, S. P., editor

Published

2024

3. Advances in Logic Locking

Author

Tehranipoor, Mark, Zamiri Azar, Kimia, Asadizanjani, Navid, Rahman, Fahim, Mardani Kamali, Hadi, Farahmandi, Farimah, Tehranipoor, Mark, Zamiri Azar, Kimia, Asadizanjani, Navid, Rahman, Fahim, Mardani Kamali, Hadi, and Farahmandi, Farimah

Published

2024

4. A Resource-Efficient Binary CNN Implementation for Enabling Contactless IoT Authentication

Author

Hasan, Mahmudul, Hoque, Tamzidul, Ganji, Fatemeh, Woodard, Damon, Forte, Domenic, and Shomaji, Sumaiya

Published

2024

5. ReTrustFSM: Toward RTL Hardware Obfuscation-A Hybrid FSM Approach

Author

M. Sazadur Rahman, Rui Guo, Hadi M. Kamali, Fahim Rahman, Farimah Farahmandi, and Mark Tehranipoor

Subjects

Hardware obfuscation, logic locking, FSM, RTL, structural analysis, BMC, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Hardware obfuscating is a proactive design-for-trust technique against IC supply chain threats, i.e., IP piracy and overproduction. Many studies have evaluated numerous techniques for obfuscation purposes. Nevertheless, de-obfuscation attacks have demonstrated their insufficiency. This paper proposes a register-transfer (RT) level finite-state-machine (FSM) obfuscation technique called ReTrustFSM that allows designers to obfuscate at the earliest possible stage. ReTrustFSM combines three types of secrecy: explicit external secrecy via an external key, implicit external secrecy based on specific clock cycles, and internal secrecy through a concealed FSM transition function. So, the robustness of ReTrustFSM relies on the external key, the external primary input patterns, and the cycle accuracy of applying such external stimuli. Additionally, ReTrustFSM defines a cohesive relationship between the features of Boolean problems and the required time for de-obfuscation, ensuring a maximum execution time for oracle-guided de-obfuscation attacks. Various attacks are employed to test ReTrustFSM’s robustness, including structural and machine learning attacks, functional I/O queries (BMC), and FSM attacks. We have also analyzed the corruptibility and overhead of design-under-obfuscation. Our experimental results demonstrate the robustness of ReTrustFSM at acceptable overhead/corruption while resisting such threat models.

Published

2023

6. A New Optimal Method for the Secure Design of Combinational Circuits against Hardware Trojans Using Interference Logic Locking.

Author

Mirmohammadi, Zahra and Etemadi Borujeni, Shahram

Subjects

COMBINATIONAL circuits, INTELLECTUAL property theft, HAMMING distance, REVERSE engineering, INTEGRATED circuits, LOGIC

Abstract

Effective resistance to intellectual property theft, reverse engineering, and hardware Trojan insertion in integrated circuit supply chains is increasingly essential, for which many solutions have been proposed. Accordingly, strong attacks are also designed in this field. One way to achieve the above goal is obfuscation. The hardware obfuscation method hides the primary function of the circuit and the normal Netlist from the attacker by adding several key gates in the original Netlist. The functionality circuit is correct only if the correct key is applied; otherwise, the circuit is obfuscated. In recent years, various obfuscation methods have been proposed. One is logic locking, the most prominent hardware protection technique since it can protect against untrusted items. Logic locking induces functional and structural changes to a design even before the layout generation. We secured the circuit against hardware Trojan insertion with a secure logic locking method based on the insertion of key gates in interference mode. We call our proposed method Secure Interference Logic Locking, SILL. SILL is based on minimum controllability in paths with maximum fan-out. In this method, we have reduced the number of key gates required for circuit obfuscation and created the maximum Hamming distance between normal and obscure outputs. In addition, the key gates are added to the circuit's complete interference, and the AES algorithm is used to generate the key. Our proposed method, SILL, was simulated in the Vivado simulation environment; the algorithms used in this method were prepared in VHDL language and designed to allow parallel execution, then applied on the original Netlist of the ISCAS85 benchmark circuits. By analyzing and comparing the results of this simulation to recent works, the amount of hardware consumption has decreased (about 5% space consumption and about a 0.15-nanosecond time delay). Then, the SAT attack algorithm was tested on ISCAS85 benchmark circuits that were obfuscated with SILL. The execution time of the attack in the second attempt was 0.24 nanoseconds longer compared to similar recent works, and it timed out in the fourth attempt. The resistance of our proposed method, having less hardware overhead and higher speed is more effective against SAT attacks than the existing conventional methods. [ABSTRACT FROM AUTHOR]

Published

2023

7. Security Assessment of High-Level Synthesis

Author

Muttaki, M. Rafid, Pundir, Nitin, Tehranipoor, Mark, Farahmandi, Farimah, and Tehranipoor, Mark, editor

Published

2021

8. Hardware obfuscation of AES IP core using combinational hardware Trojan circuit for secure data transmission in IoT applications.

Author

Chhabra, Surbhi and Lata, Kusum

Subjects

DATA transmission systems, COMBINATIONAL circuits, SYSTEMS on a chip, ADVANCED Encryption Standard, HAMMING distance, INTERNET of things, REVERSE engineering, SEMICONDUCTOR industry

Abstract

Summary: In semiconductor industry, reusability‐based System‐on‐Chip architecture using hardware intellectual property (IP) cores play a prominent role in Internet‐of‐Things (IoT) applications for secure data transmission. The advent of IoT makes it possible for physical things to transmit, process, compute, and receive data over internet. But, it also introduces in‐device communication security vulnerabilities. Advanced Encryption Standard (AES) IP has been used to address security vulnerabilities in IoT. It is an efficient and high‐performance crypto algorithm used in IoT devices for secure and fast data encryption. However, due to rise of many attacks, the security of AES IP is also under threat. Hardware obfuscation is one such prominent countermeasure that mitigates hardware attacks such as tampering, reverse engineering, and malicious alteration. This article presents secure AES IP mechanism using the potential technique of obfuscation inspired by the concept of combinational hardware Trojan. Experimental results show that the proposed technique is resilient against reverse‐engineering, malicious alteration, Boolean satisfiability attack, and key‐sensitizing attacks. The confusion and diffusion features of obfuscated AES IP are higher in terms of Hamming distance, avalanche effect, and balance rate. The proposed technique is implemented in Basys‐3 FPGAs within 5% of power and area overhead while maintaining high throughput. [ABSTRACT FROM AUTHOR]

Published

2022

9. Obfuscated AES cryptosystem for secure medical imaging systems in IoMT edge devices.

Author

Chhabra, Surbhi and Lata, Kusum

Abstract

Internet of Medical Things (IoMT) driven health is the most advantageous aspect of technology in the global healthcare industry. Incorporating personalized health data into the formal multimedia electronic health record has tremendous potential to enhance personalized healthcare. The transition from medical data paperwork to health records increases legibility, reduces the in-hospital congestion services, performs remote patient monitoring. Hence, the secure exchange of health records to the cloud is paramount. Many cryptography schemes provide peer-to-peer communication by ensuring health record confidentiality and integrity over public networks. This paper presents an effective and scalable Advanced Encryption Standard (AES) cryptosystem to ensure better resistance against well-acknowledged attacks and secure the health record, specifically medical imaging, successfully before transmission. The main contribution of this paper is to build a secure hardware-software co-design of a scalable and reconfigurable medical imaging processing system by integrating authentication-based approaches such as PUF and TRNG to the AES cryptosystem on ZedBoard with minimum possible overhead. Simulation and experimental results in terms of statistical tests, PUF evaluation metrics, authentication, and NIST analysis illustrate the efficacy of the proposed system. Furthermore, we have employed a threat model, analyzed several hardware attacks such as reverse engineering, side-channel attacks, differential attacks, key-sensitivity attacks, etc., and conducted an in-depth security evaluation to show the robustness and attack resiliency of our proposed medical imaging processing system. [ABSTRACT FROM AUTHOR]

Published

2022

10. Towards the enhancement of AES IP security using hardware obfuscation technique: A practical approach for secure data transmission in IoT.

Author

Chhabra, Surbhi and Lata, Kusum

Abstract

The global market of developing Internet of Things (IoT) devices increases rapidly with improved design goals like cost, energy efficiency, and performance. Unfortunately, the above design goals often come at the expense of security. Illegal access to the network, malicious device control, compromised sensitive information, and theft of personal data are main threats to these devices. As a result, the Advanced Encryption Standard (AES) is sometimes employed to ensure safe transmission and processing of data in IoT Systems. However, tampering, cloning, and reverse engineering are main concerns that impair the computational complexity of the 128‐bit AES at the hardware level. Recently hardware obfuscation‐based AES has emerged as a comprehensive hardware security approach for reducing threat impacts. The hardware obfuscation schemes efficiently introduce obfuscation keys for AES to conceal its functionality. The Xilinx Vivado 2016.2 software and BASYS‐3 FPGA have been used to implement obfuscated AES approaches in this work. The proposed methods have low resource usage in terms of area and power overhead while providing a high level of security in terms of Hamming Distance of 50% and Avalanche Effect of 40% for each obfuscation method. We have also analyzed the probability of success for brute‐force attacks for proposed methodologies. [ABSTRACT FROM AUTHOR]

Published

2022

11. Hardware Obfuscation for IP Protection of DSP Applications.

Author

R, Naveenkumar, Sivamangai, N.M., A, Napolean, and Nissi, G. Akashraj

Subjects

*DIGITAL signal processing, *IMPULSE response, *REVERSE engineering, *INTERNET piracy, *INTELLECTUAL property, *HARDWARE

Abstract

With an increasing risk of circuit piracy and intellectual property (IP), it is necessary to solve the problem of hardware security in digital signal processing (DSP) via hardware obfuscation. To obscure the circuit at a structural level, a high level of transformation techniques is used. High-level transformations (HLT) not only help in obfuscating the architecture of the circuit, it simultaneously meets the area-speed-power trade-offs. A key-based multiplexer design is proposed for the switch instance, which gives the desired output to the next node only if the configuration key is correct. A single bit change in the key will affect the whole functionality of the design. This key-based multiplexer helps to achieve functional obfuscation. As a result, two-level security is achieved. The objective of this paper is to prevent reverse engineering by structurally and functionally obfuscating the DSP circuit. Implemented and analyzed the area of the obfuscated 3-tap, 5-tap finite impulse response (FIR) filter, and obfuscated infinite impulse response (IIR) filter. Results are compared with those of the non-obfuscated filter circuit. Experimental results show that by applying the high level of transformations, the circuit gets obfuscated. Despite that, the area is reduced. The results confirm that the area of the obfuscated third-order IIR filter design is reduced by 24.56% as compared with its corresponding non-obfuscated filter. [ABSTRACT FROM AUTHOR]

Published

2022

12. LifeLine for FPGA Protection: Obfuscated Cryptography for Real-World Security

Author

Florian Stolz, Nils Albartus, Julian Speith, Simon Klix, Clemens Nasenberg, Aiden Gula, Marc Fyrbiak, Christof Paar, Tim Güneysu, and Russell Tessier

Subjects

FPGA Security, Hardware Obfuscation, Software Obfuscation, Reverse Engineering, Computer engineering. Computer hardware, TK7885-7895, Information technology, T58.5-58.64

Abstract

Over the last decade attacks have repetitively demonstrated that bitstream protection for SRAM-based FPGAs is a persistent problem without a satisfying solution in practice. Hence, real-world hardware designs are prone to intellectual property infringement and malicious manipulation as they are not adequately protected against reverse-engineering. In this work, we first review state-of-the-art solutions from industry and academia and demonstrate their ineffectiveness with respect to reverse-engineering and design manipulation. We then describe the design and implementation of novel hardware obfuscation primitives based on the intrinsic structure of FPGAs. Based on our primitives, we design and implement LifeLine, a hardware design protection mechanism for FPGAs using hardware/software co-obfuscated cryptography. We show that LifeLine offers effective protection for a real-world adversary model, requires minimal integration effort for hardware designers, and retrofits to already deployed (and so far vulnerable) systems.

Published

2021

13. Physical Unclonable Functions based Hardware Obfuscation Techniques: A State of the Art.

Author

Kareem, Husam and Dunaev, Dmitriy

Subjects

ELECTRONIC equipment, COMPUTER input-output equipment, SMART homes, MEDICAL care, ROBUST control

Abstract

A clear majority of electronic devices applications used in our daily life require a reliable, secure architecture, e.g., healthcare, social security cards, electronic meters, and smart homes. As a result, many studies are trying to develop appropriate solutions to tackle hardware security threats such as IC piracy, IC overbuilding, reverse engineering, counterfeiting, and tampering. Hardware obfuscation has been introduced as one of the leading robust, low-cost security solutions against different security threats, especially when combined with physical unclonable functions. Considering the inherent irreproducibility of PUFs, this method can provide a high-level security system. However, finding an applicable existent PUF or implementing a new PUF design that meets each hardware obfuscation requirements is not a trivial task. This study reviews and discusses hardware security systems based on PUFs inherited variations and the corresponding hardware obfuscation approaches. [ABSTRACT FROM AUTHOR]

Published

2021

14. UNSAIL : Thwarting Oracle-Less Machine Learning Attacks on Logic Locking.

Author

Alrahis, Lilas, Patnaik, Satwik, Knechtel, Johann, Saleh, Hani, Mohammad, Baker, Al-Qutayri, Mahmoud, and Sinanoglu, Ozgur

Abstract

Logic locking aims to protect the intellectual property (IP) of integrated circuit (IC) designs throughout the globalized supply chain. The SAIL attack, based on tailored machine learning (ML) models, circumvents combinational logic locking with high accuracy and is amongst the most potent attacks as it does not require a functional IC acting as an oracle. In this work, we propose UNSAIL, a logic locking technique that inserts key-gate structures with the specific aim to confuse ML models like those used in SAIL. More specifically, UNSAIL serves to prevent attacks seeking to resolve the structural transformations of synthesis-induced obfuscation, which is an essential step for logic locking. Our approach is generic; it can protect any local structure of key-gates against such ML-based attacks in an oracle-less setting. We develop a reference implementation for the SAIL attack and launch it on both traditionally locked and UNSAIL-locked designs. For SAIL, two ML models have been proposed (which we implement accordingly), namely a change-prediction model and a reconstruction model; the change-prediction model is used to determine which key-gate structures to restore using the reconstruction model. Our study on benchmarks ranging from the ISCAS-85 and ITC-99 suites to the OpenRISC Reference Platform System-on-Chip (ORPSoC) confirms that UNSAIL degrades the accuracy of the change-prediction model and the reconstruction model by an average of 20.13 and 17 percentage points (pp), respectively. When the aforementioned models are combined, which is the most powerful scenario for SAIL, UNSAIL reduces the attack accuracy of SAIL by an average of 11pp. We further demonstrate that UNSAIL thwarts other oracle-less attacks, i.e., SWEEP and the redundancy attack, indicating the generic nature and strength of our approach. Detailed layout-level evaluations illustrate that UNSAIL incurs minimal area and power overheads of 0.26% and 0.61%, respectively, on the million-gate ORPSoC design. [ABSTRACT FROM AUTHOR]

Published

2021

15. Doppelganger Obfuscation — Exploring theDefensive and Offensive Aspects of Hardware Camouflaging

Author

Max Hoffmann and Christof Paar

Subjects

Hardware Obfuscation, Camouflaging, Hardware Trojans, Computer engineering. Computer hardware, TK7885-7895, Information technology, T58.5-58.64

Abstract

Hardware obfuscation is widely used in practice to counteract reverse engineering. In recent years, low-level obfuscation via camouflaged gates has been increasingly discussed in the scientific community and industry. In contrast to classical high-level obfuscation, such gates result in recovery of an erroneous netlist. This technology has so far been regarded as a purely defensive tool. We show that low-level obfuscation is in fact a double-edged sword that can also enable stealthy malicious functionalities. In this work, we present Doppelganger, the first generic design-level obfuscation technique that is based on low-level camouflaging. Doppelganger obstructs central control modules of digital designs, e.g., Finite State Machines (FSMs) or bus controllers, resulting in two different design functionalities: an apparent one that is recovered during reverse engineering and the actual one that is executed during operation. Notably, both functionalities are under the designer’s control. In two case studies, we apply Doppelganger to a universal cryptographic coprocessor. First, we show the defensive capabilities by presenting the reverse engineer with a different mode of operation than the one that is actually executed. Then, for the first time, we demonstrate the considerable threat potential of low-level obfuscation. We show how an invisible, remotely exploitable key-leakage Trojan can be injected into the same cryptographic coprocessor just through obfuscation. In both applications of Doppelganger, the resulting design size is indistinguishable from that of an unobfuscated design, depending on the choice of encodings.

Published

2020

16. Hardware Obfuscation: Techniques and Open Challenges

Author

Becker, Georg T., Fyrbiak, Marc, Kison, Christian, Bossuet, Lilian, editor, and Torres, Lionel, editor

Published

2017

17. 3D/2.5D IC-Based Obfuscation

Author

Xie, Yang, Bao, Chongxi, Srivastava, Ankur, Forte, Domenic, editor, Bhunia, Swarup, editor, and Tehranipoor, Mark M., editor

Published

2017

18. Logic Encryption

Author

Rajendran, Jeyavijayan (JV), Garg, Siddharth, Forte, Domenic, editor, Bhunia, Swarup, editor, and Tehranipoor, Mark M., editor

Published

2017

19. Introduction to Hardware Obfuscation: Motivation, Methods and Evaluation

Author

Shakya, Bicky, Tehranipoor, Mark M., Bhunia, Swarup, Forte, Domenic, Forte, Domenic, editor, Bhunia, Swarup, editor, and Tehranipoor, Mark M., editor

Published

2017

20. VLSI Test and Hardware Security Background for Hardware Obfuscation

Author

Saqib, Fareena, Plusquellic, Jim, Forte, Domenic, editor, Bhunia, Swarup, editor, and Tehranipoor, Mark M., editor

Published

2017

21. A Low Cost MST-FSM Obfuscation Method for Hardware IP Protection.

Author

Zhang, Yuejun, Pan, Zhao, Wang, Pengjun, and Zhang, Xiaowei

Subjects

*FINITE state machines, *HAMMING distance, *SPANNING trees, *ENCRYPTION protocols, *ALGORITHMS

Abstract

Effective resistance to intellectual property (IP) piracy, overproduction and reverse engineering are becoming more and more necessary in the integrated circuit (IC) supply chain. To protect the hardware, the obfuscation methodology hides the original function by adding a large number of redundant states. However, existing hardware obfuscation approaches have hardware overhead and efficiency of obfuscation limitations. This paper proposed a novel methodology for IP security using the minimum spanning tree finite state machine (MST-FSM) obfuscation. In the minimum spanning tree (MST) algorithm, the Hamming distance defines the cost of obfuscated states. The Kruskal algorithm optimizes the connection relationship of obfuscated states by computing the Hamming distance of the MST-FSM. The proposed MST-FSM is automatically generated and embedded in the hardware IP with the self-building program. Finally, the MST-FSM is applied on the itc99 benchmark circuits and encryption standard IP cores. Compared with other state-of-the-arts, the obfuscation potency is improved by 3.57%, and the average hardware cost is decreased by about 6.01%. [ABSTRACT FROM AUTHOR]

Published

2020

22. Tunnel FET‐based ultralow‐power and hardware‐secure circuit design considering p‐i‐n forward leakage.

Author

Japa, Aditya, Majumder, Manoj Kumar, Sahoo, Subhendu K., and Vaddi, Ramesh

Subjects

*TUNNEL field-effect transistors, *RANDOM number generators, *ELECTRIC circuit design & construction, *LEAKAGE, *DIGITAL electronics, *FIELD-effect transistors

Abstract

Summary: Tunnel field‐effect transistor (TFET) exhibits significant p‐i‐n forward leakage with the increase in drain‐to‐source voltage bias, and this adversely impacts the power consumption and reliability of TFET digital circuits. This work presents low‐power circuit techniques that result in novel compact gates and recommends tristate gates to mitigate the leakage effects. The proposed novel compact gates and tristate gates demonstrate two and six times lower power consumption compared with conventional TFET transmission gates with enhanced reliability. Further, this work introduces a new design methodology that leverages TFET p‐i‐n forward leakage for hardware obfuscation applications. Utilizing the proposed design methodology, the optimization of 40% and 80% in area and power consumption of hardware security primitives like true random number generators is also accomplished. [ABSTRACT FROM AUTHOR]

Published

2020

23. A Novel Probability-Based Logic-Locking Technique: ProbLock

Author

Michael Yue and Sara Tehranipoor

Subjects

hardware security, logic locking, hardware obfuscation, Chemical technology, TP1-1185

Abstract

Integrated circuit (IC) piracy and overproduction are serious issues that threaten the security and integrity of a system. Logic locking is a type of hardware obfuscation technique where additional key gates are inserted into the circuit. Only the correct key can unlock the functionality of that circuit; otherwise, the system produces the wrong output. In an effort to hinder these threats on ICs, we have developed a probability-based logic-locking technique to protect the design of a circuit. Our proposed technique, called “ProbLock”, can be applied to both combinational and sequential circuits through a critical selection process. We used a filtering process to select the best location of key gates based on various constraints. Each step in the filtering process generates a subset of nodes for each constraint. We also analyzed the correlation between each constraint and adjusted the strength of the constraints before inserting key gates. We tested our algorithm on 40 benchmarks from the ISCAS ’85 and ISCAS ’89 suites. We evaluated ProbLock against a SAT attack and measured how long the attack took to successfully generate a key value. The SAT attack took longer for most benchmarks using ProbLock which proves viable security in hardware obfuscation.

Published

2021

24. Obfuscation-Based Secure SoC Design for Protection Against Piracy and Trojan Attacks

Author

Chakraborty, Rajat Subhra, Zheng, Yu, Bhunia, Swarup, Chang, Chip-Hong, editor, and Potkonjak, Miodrag, editor

Published

2016

25. BLOcKeR: A Biometric Locking Paradigm for IoT and the Connected Person

Author

Shomaji, Sumaiya, Guo, Zimu, Ganji, Fatemeh, Karimian, Nima, Woodard, Damon, and Forte, Domenic

Published

2021

26. On the Construction of Composite Finite Fields for Hardware Obfuscation.

Author

Zhang, Xinmiao and Lao, Yingjie

Subjects

*FINITE fields, *COMPOSITE construction

Abstract

Hardware obfuscation is a technique that modifies the circuit to hide the functionality. Obfuscations through algorithmic modifications add protection in addition to circuit-level techniques, and their effects on the data paths can be analyzed and controlled at the architectural level. Many error-correcting coding and cryptography algorithms are based on finite field arithmetic. For the first time, this paper proposes a hardware obfuscation scheme achieved through varying finite field constructions and primitive element representations. Also the variations are effectively transformed to bit permuters controlled by obfuscation keys to achieve high level of security with very small complexity overheads. To illustrate the effectiveness, the proposed scheme is applied to obfuscate Reed-Solomon decoders, which are broadly used in communication and storage systems. For a (255, 239) RS decoder over finite field $GF(256)$GF(256), the proposed scheme achieves 1239 bits of independent obfuscation key with 4.4 percent area overhead, while yielding no penalty on the throughput and only one extra clock cycle of latency. [ABSTRACT FROM AUTHOR]

Published

2019

27. LeGO: A Learning-Guided Obfuscation Framework for Hardware IP Protection

Author

Abdulrahman Alaql, Prabuddha Chakraborty, Swarup Bhunia, Tamzidul Hoque, and Saranyu Chattopadhyay

Subjects

Reverse engineering, business.industry, Process (engineering), Computer science, Overhead (engineering), computer.software_genre, Computer Graphics and Computer-Aided Design, Robustness (computer science), Scalability, Obfuscation, Hardware obfuscation, Key (cryptography), Electrical and Electronic Engineering, business, computer, Software, Computer hardware

Abstract

The security of hardware intellectual properties (IPs) has become a significant concern, as the opportunity for piracy, reverse engineering, and malicious modification is increasing. Hardware obfuscation has been studied as a potent method to protect against all these attack vectors. However, most of the existing obfuscation techniques have been successfully compromised, where many inherent functional or structural vulnerabilities in these techniques are utilized to reveal the obfuscation key or retrieve the original design. In this paper, we introduce LeGO, a learning-guided obfuscation framework that overcomes known vulnerabilities in a scalable and systematic manner, leading to a robust and lightweight locking mechanism. The proposed framework is guided by our security evaluation process that performs a thorough assessment of an obfuscated IP against various attacks and identifies the vulnerabilities. It then judiciously selects and applies a set of design modification steps or rules that can eliminate these vulnerabilities. Such a rule-based obfuscation process has the distinctive capability to address all existing as well as emerging attacks through the learning of appropriate design transformation steps that prevent these attacks. We present an efficient strategy to apply these rules on a design, while resolving any conflict. Our evaluation of the LeGO framework on a set of ISCAS85 and open-source IP benchmarks has shown promising results in terms of robustness against diverse attacks with an average of area, power and delay overhead of 39%, 45%, and 15%, respectively.

Published

2022

28. A New Optimal Method for the Secure Design of Combinational Circuits against Hardware Trojans Using Interference Logic Locking

Author

Zahra Mirmohammadi and Shahram Etemadi Borujeni

Subjects

logic locking, hardware obfuscation, key interference, convergence, Computer Networks and Communications, Hardware and Architecture, Control and Systems Engineering, Signal Processing, Electrical and Electronic Engineering, hardware Trojans

Abstract

Effective resistance to intellectual property theft, reverse engineering, and hardware Trojan insertion in integrated circuit supply chains is increasingly essential, for which many solutions have been proposed. Accordingly, strong attacks are also designed in this field. One way to achieve the above goal is obfuscation. The hardware obfuscation method hides the primary function of the circuit and the normal Netlist from the attacker by adding several key gates in the original Netlist. The functionality circuit is correct only if the correct key is applied; otherwise, the circuit is obfuscated. In recent years, various obfuscation methods have been proposed. One is logic locking, the most prominent hardware protection technique since it can protect against untrusted items. Logic locking induces functional and structural changes to a design even before the layout generation. We secured the circuit against hardware Trojan insertion with a secure logic locking method based on the insertion of key gates in interference mode. We call our proposed method Secure Interference Logic Locking, SILL. SILL is based on minimum controllability in paths with maximum fan-out. In this method, we have reduced the number of key gates required for circuit obfuscation and created the maximum Hamming distance between normal and obscure outputs. In addition, the key gates are added to the circuit’s complete interference, and the AES algorithm is used to generate the key. Our proposed method, SILL, was simulated in the Vivado simulation environment; the algorithms used in this method were prepared in VHDL language and designed to allow parallel execution, then applied on the original Netlist of the ISCAS85 benchmark circuits. By analyzing and comparing the results of this simulation to recent works, the amount of hardware consumption has decreased (about 5% space consumption and about a 0.15-nanosecond time delay). Then, the SAT attack algorithm was tested on ISCAS85 benchmark circuits that were obfuscated with SILL. The execution time of the attack in the second attempt was 0.24 nanoseconds longer compared to similar recent works, and it timed out in the fourth attempt. The resistance of our proposed method, having less hardware overhead and higher speed is more effective against SAT attacks than the existing conventional methods.

Published

2023

29. On the Difficulty of FSM-based Hardware Obfuscation

Author

Marc Fyrbiak, Sebastian Wallat, Jonathan Déchelotte, Nils Albartus, Sinan Böcker, Russell Tessier, and Christof Paar

Subjects

Hardware Reverse Engineering, Hardware Obfuscation, Hardware Nanomites, FSM-based Hardware Obfuscation, Computer engineering. Computer hardware, TK7885-7895, Information technology, T58.5-58.64

Abstract

In today’s Integrated Circuit (IC) production chains, a designer’s valuable Intellectual Property (IP) is transparent to diverse stakeholders and thus inevitably prone to piracy. To protect against this threat, numerous defenses based on the obfuscation of a circuit’s control path, i.e. Finite State Machine (FSM), have been proposed and are commonly believed to be secure. However, the security of these sequential obfuscation schemes is doubtful since realistic capabilities of reverse engineering and subsequent manipulation are commonly neglected in the security analysis. The contribution of our work is threefold: First, we demonstrate how high-level control path information can be automatically extracted from third-party, gate-level netlists. To this end, we extend state-of-the-art reverse engineering algorithms to deal with Field Programmable Gate Array (FPGA) gate-level netlists equipped with FSM obfuscation. Second, on the basis of realistic reverse engineering capabilities we carefully review the security of state-of-the-art FSM obfuscation schemes. We reveal several generic strategies that bypass allegedly secure FSM obfuscation schemes and we practically demonstrate our attacks for a several of hardware designs, including cryptographic IP cores. Third, we present the design and implementation of Hardware Nanomites, a novel obfuscation scheme based on partial dynamic reconfiguration that generically mitigates existing algorithmic reverse engineering.

Published

2018

30. Hardware Obfuscation of AES IP Core Using PUFs and PRNG: A Secure Cryptographic Key Generation Solution for Internet-of-Things Applications

Author

Chhabra, Surbhi and Lata, Kusum

Published

2022

31. Hybrid Protection of Digital FIR Filters

Author

Levent Aksoy, Quang-Linh Nguyen, Felipe Almeida, Jaan Raik, Marie-Lise Flottes, Sophie Dupuis, Samuel Pagliarini, Tallinn University of Technology (TTÜ), STMicroelectronics [Grenoble] (ST-GRENOBLE), Test and dEpendability of microelectronic integrated SysTems (TEST), Laboratoire d'Informatique de Robotique et de Microélectronique de Montpellier (LIRMM), Centre National de la Recherche Scientifique (CNRS)-Université de Montpellier (UM)-Centre National de la Recherche Scientifique (CNRS)-Université de Montpellier (UM), This work has been partially conducted in the project 'ICT programme' which was supported by the European Union through the European Social Fund. It was also partially supported by European Union’s Horizon 2020 research and innovation programme under grant agreement No 952252 (SAFEST), ANR-18-CE39-0005,MOOSIC,Synthèse optimisée multi-objectifs pour améliorer la sécurité(2018), and European Project: 952252,SAFEST

Subjects

Signal Processing (eess.SP), FOS: Computer and information sciences, hardware obfuscation, Computer Science - Cryptography and Security, oracle-less and oracle-guided attacks, direct and transposed forms, logic locking, FIR filters, Hardware and Architecture, constant multiplications, FOS: Electrical engineering, electronic engineering, information engineering, [SPI.NANO]Engineering Sciences [physics]/Micro and nanotechnologies/Microelectronics, Electrical Engineering and Systems Science - Signal Processing, Electrical and Electronic Engineering, Cryptography and Security (cs.CR), Software

Abstract

International audience; A digital Finite Impulse Response (FIR) filter is a ubiquitous block in digital signal processing applications and its behavior is determined by its coefficients. To protect filter coefficients from an adversary, efficient obfuscation techniques have been proposed, either by hiding them behind decoys or replacing them by key bits. In this article, we initially introduce a query attack that can discover the secret key of such obfuscated FIR filters, which could not be broken by existing prominent attacks. Then, we propose a first of its kind hybrid technique, including both hardware obfuscation and logic locking using a point function for the protection of parallel direct and transposed forms of digital FIR filters. Experimental results show that the hybrid protection technique can lead to FIR filters with higher security while maintaining the hardware complexity competitive or superior to those locked by prominent logic locking methods. It is also shown that the protected multiplier blocks and FIR filters are resilient to existing attacks. The results on different forms and realizations of FIR filters show that the parallel direct form FIR filter has a promising potential for a secure design.

Published

2023

32. BLOcKeR: A Biometric Locking Paradigm for IoT and the Connected Person

Author

Zimu Guo, Sumaiya Shomaji, Damon L. Woodard, Fatemeh Ganji, Nima Karimian, and Domenic Forte

Subjects

Authentication, Matching (statistics), Security analysis, Biometrics, business.industry, Computer science, Data_MISCELLANEOUS, Access control, Computer security, computer.software_genre, Hardware obfuscation, business, Electronic hardware, Internet of Things, computer

Abstract

As the internet-of-things (IoT) era begins, there is a significant need for low-cost access control schemes that allow humans to activate and maintain IoT systems.Traditional biometric access control systems remain, however, vulnerable to physical attacks resulting in template theft/privacy, illegal access, etc. This paper aimed to address this by expanding on a proposal called BLOcKeR, which combines biometrics with two recent advances in hardware security—physically unclonable functions (PUFs) and hardware obfuscation. Hardware obfuscation is a technique to protect electronic hardware against access control circumvention attacks through locking mechanisms. A PUF is incorporated to tie the biometrics of the owner to the system. Combining these advances with biometrics, BLOcKeR protects a biometric system from physical attacks by locking its functionality and aims at ensuring successful activation of the locked system unlike the authentication /matching in biometric systems. In addition, unlike various existing approaches, BLOcKeR does not store the raw biometric of users while providing irreversibility, unlinkability, and revocability to the templates. We present a security analysis and experiments with more than 45,000 attack variants to evaluate BLOcKeR’s security against unauthorized access.

Published

2021

33. Preventing DNN Model IP Theft via Hardware Obfuscation

Author

Victor C. Ferreira, Vinay C. Patil, Felipe M. G. França, Brunno F. Goldstein, Sandip Kundu, and Alexandre S. Nery

Subjects

010302 applied physics, business.industry, Computer science, Deep learning, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Public key infrastructure, Cryptography, 010501 environmental sciences, Encryption, Trusted system, 01 natural sciences, Data modeling, Obfuscation (software), Embedded system, 0103 physical sciences, Hardware obfuscation, Artificial intelligence, Electrical and Electronic Engineering, business, 0105 earth and related environmental sciences

Abstract

Training accurate deep learning (DL) models require large amounts of training data, significant work in labeling the data, considerable computing resources, and substantial domain expertise. In short, they are expensive to develop. Hence, protecting these models, which are valuable storehouses of intellectual properties (IP), against model stealing/cloning attacks is of paramount importance. Today’s mobile processors feature Neural Processing Units (NPUs) to accelerate the execution of DL models. DL models executing on NPUs are vulnerable to hyperparameter extraction via side-channel attacks and model parameter theft via bus monitoring attacks. This paper presents a novel solution to defend against DL IP theft in NPUs during model distribution and deployment/execution via lightweight, keyed model obfuscation scheme. Unauthorized use of such models results in inaccurate classification. In addition, we present an ideal end-to-end deep learning trusted system composed of: 1) model distribution via hardware root-of-trust and public-key cryptography infrastructure (PKI) and 2) model execution via low-latency memory encryption. We demonstrate that our proposed obfuscation solution achieves IP protection objectives without requiring specialized training or sacrificing the model’s accuracy. In addition, the proposed obfuscation mechanism preserves the output class distribution while degrading the model’s accuracy for unauthorized parties, covering any evidence of a hacked model.

Published

2021

34. Security Assessment of Dynamically Obfuscated Scan Chain Against Oracle-guided Attacks

Author

Farimah Farahmandi, Adib Nahiyan, Saverio Fazzari, Mark Tehranipoor, Domenic Forte, M. Sazadur Rahman, Kenneth Plaks, and Fahim Rahman

Subjects

Combinational logic, Computer science, 0211 other engineering and technologies, Scan chain, 02 engineering and technology, Computer Graphics and Computer-Aided Design, Formal proof, Oracle, 020202 computer hardware & architecture, Computer Science Applications, Computer engineering, 0202 electrical engineering, electronic engineering, information engineering, Benchmark (computing), Hardware obfuscation, Overhead (computing), Electrical and Electronic Engineering, Boolean satisfiability problem, Hardware_LOGICDESIGN, 021106 design practice & management

Abstract

Logic locking has emerged as a promising solution to protect integrated circuits against piracy and tampering. However, the security provided by existing logic locking techniques is often thwarted by Boolean satisfiability (SAT)-based oracle-guided attacks. Criteria for successful SAT attacks on locked circuits include: (i) the circuit under attack is fully combinational, or (ii) the attacker has scan chain access. To address the threat posed by SAT-based attacks, we adopt the dynamically obfuscated scan chain (DOSC) architecture and illustrate its resiliency against the SAT attacks when inserted into the scan chain of an obfuscated design. We demonstrate, both mathematically and experimentally, that DOSC exponentially increases the resiliency against key extraction by SAT attack and its variants. Our results show that the mathematical estimation of attack complexity correlates to the experimental results with an accuracy of 95% or better. Along with the formal proof, we model DOSC architecture to its equivalent combinational circuit and perform SAT attack to evaluate its resiliency empirically. Our experiments demonstrate that SAT attack on DOSC-inserted benchmark circuits timeout at minimal test time overhead, and while DOSC requires less than 1% area and power overhead.

Published

2021

35. Hardware Security Exploiting Post-CMOS Devices: Fundamental Device Characteristics, State-of-the-Art Countermeasures, Challenges and Roadmap

Author

Brajesh Kumar Kaushik, Ramesh Vaddi, Subhendu Kumar Sahoo, Manoj Kumar Majumder, and Aditya Japa

Subjects

Hardware security module, Computer science, Overhead (engineering), Semiconductor device modeling, Computer Science Applications, Resistive random-access memory, Carbon nanotube field-effect transistor, Attack model, CMOS, Hardware_INTEGRATEDCIRCUITS, Hardware obfuscation, Electronic engineering, Hardware_ARITHMETICANDLOGICSTRUCTURES, Electrical and Electronic Engineering, Hardware_LOGICDESIGN

Abstract

Emerging nanoelectronic semiconductor devices have been quite promising in enhancing hardware-oriented security and trust. However, implementing hardware security primitives and methodologies requires large area overhead and power consumption. Furthermore, emerging new attack models and vulnerabilities are regularly evolving and cannot be adequately addressed by current CMOS technology. This paper for the first time presents a comprehensive review of numerous post-CMOS technologies based hardware security primitives and methodologies, particularly true random number generators, physically unclonable functions, sidechannel analysis countermeasures, and hardware obfuscation techniques. Various beyond-CMOS device technologies including tunneling FET (TFET), hybrid phase transition FET (HyperFET), carbon nanotube FET (CNTFET), silicon nanowire FET (SiNWFET), symmetrical tunneling FET (SymFET), phase-change memory (PCM), spin-transfer torque magnetic tunnel junction (STT-MTJ), resistive random access memory (RRAM) have been considered in this study. First, the basic principle of operation and unusual characteristics of nanoelectronic devices used for hardware security applications have been extensively discussed. Later, CMOS technology challenges and benefits of emerging nanotechnologies for the design of hardware security primitives and methodologies have been reported. Finally, different analyses have been presented to demonstrate the promising performance of post-CMOS devices over the current CMOS technology in different countermeasures. Additionally, challenges, future directions, and plans have been presented to achieve more research outcomes in this field.

Published

2021

36. High-Level Synthesis of Key-Obfuscated RTL IP with Design Lockout and Camouflaging

Author

Love Kumar Sah, Srinivas Katkoori, and Sheikh Ariful Islam

Subjects

Scheme (programming language), Computer science, business.industry, 020206 networking & telecommunications, 02 engineering and technology, Computer Graphics and Computer-Aided Design, 020202 computer hardware & architecture, Computer Science Applications, Application-specific integrated circuit, High-level synthesis, Embedded system, Obfuscation, 0202 electrical engineering, electronic engineering, information engineering, Hardware obfuscation, Key (cryptography), Graph (abstract data type), Electrical and Electronic Engineering, Field-programmable gate array, business, Hardware_REGISTER-TRANSFER-LEVELIMPLEMENTATION, computer, Hardware_LOGICDESIGN, computer.programming_language

Abstract

We propose three orthogonal techniques to secure Register-Transfer-Level (RTL) Intellectual Property (IP). In the first technique, the key-based RTL obfuscation scheme is proposed at an early design phase during High-Level Synthesis (HLS). Given a control-dataflow graph, we identify operations on non-critical paths and leverage synthesis information during and after HLS to insert obfuscation logic. In the second approach, we propose a robust design lockout mechanism for a key-obfuscated RTL IP when an incorrect key is applied more than the allowed number of attempts. We embed comparators on obfuscation logic output to check if the applied key is correct or not and a finite-state machine checker to enforce design lockout. Once locked out, only an authorized user (designer) can unlock the locked IP. In the third technique, we design four variants of the obfuscating module to camouflage the RTL design. We analyze the security properties of obfuscation, design lockout, and camouflaging. We demonstrate the feasibility on four datapath-intensive IPs and one crypto core for 32-, 64-, and 128-bit key lengths under three design corners (best, typical, and worst) with reasonable area, power, and delay overheads on both ASIC and FPGA platforms.

Published

2020

37. Hardware Obfuscation and Logic Locking: A Tutorial Introduction

Author

Tamzidul Hoque, Rajat Subhra Chakraborty, and Swarup Bhunia

Subjects

Reverse engineering, Focus (computing), Sequential logic, Computer science, business.industry, Supply chain, Reading (computer), 02 engineering and technology, Integrated circuit, computer.software_genre, 020202 computer hardware & architecture, law.invention, Hardware and Architecture, law, Embedded system, 0202 electrical engineering, electronic engineering, information engineering, Hardware obfuscation, Electrical and Electronic Engineering, business, computer, Software, AND gate

Abstract

Editor’s note : If you are designing or integrating hardware IP blocks into your designs, and you are using common global supply chains, then reading this overview article on how to protect your IP against reverse engineering, piracy, and malicious alteration attacks is a must. The authors give a comprehensive overview of current countermeasures that can be used at RTL, gate-, and layout-level to protect your design with a focus on combinational and sequential logic locking and a discussion on merits, overheads, and shortcomings of such techniques. —Jurgen Teich, FAU Erlangen

Published

2020

38. Security of Microfluidic Biochip

Author

Farinaz Koushanfar, Seetal Potluri, and Huili Chen

Subjects

Reverse engineering, 0303 health sciences, Exploit, Computer science, business.industry, Microfluidics, Overhead (engineering), 02 engineering and technology, computer.software_genre, Computer Graphics and Computer-Aided Design, Automation, 020202 computer hardware & architecture, Computer Science Applications, 03 medical and health sciences, Hardware Trojan, Embedded system, 0202 electrical engineering, electronic engineering, information engineering, Hardware obfuscation, Hardware_ARITHMETICANDLOGICSTRUCTURES, Electrical and Electronic Engineering, Biochip, business, computer, 030304 developmental biology

Abstract

With the advancement of system miniaturization and automation, Lab-on-a-Chip (LoC) technology has revolutionized traditional experimental procedures. Microfluidic Biochip (MFB) is an emerging branch of LoC with wide medical applications such as DNA sequencing, drug delivery, and point of care diagnostics. Due to the critical usage of MFBs, their security is of great importance. In this article, we exploit the vulnerabilities of two types of MFBs: Flow-based Microfluidic Biochip (FMFB) and Digital Microfluidic Biochip (DMFB). We propose a systematic framework for applying Reverse Engineering (RE) attacks and Hardware Trojan (HT) attacks on MFBs as well as for practical countermeasures against the proposed attacks. We evaluate the attacks and defense on various benchmarks where experimental results prove the effectiveness of our methods. Security metrics are defined to quantify the vulnerability of MFBs. The overhead and performance of the proposed attacks as well as countermeasures are also discussed.

Published

2020

39. Graph Similarity and its Applications to Hardware Security

Author

Nicolai Bissantz, Marc Fyrbiak, Sebastian Wallat, Sascha Reinhard, and Christof Paar

Subjects

Hardware security module, Theoretical computer science, Computer science, Graph theory, 02 engineering and technology, 020202 computer hardware & architecture, Theoretical Computer Science, Computational Theory and Mathematics, Hardware and Architecture, Hardware Trojan, Logic gate, 0202 electrical engineering, electronic engineering, information engineering, Hardware obfuscation, Netlist, Adjacency matrix, Heuristics, Software

Abstract

Hardware reverse engineering is a powerful and universal tool for both security engineers and adversaries. From a defensive perspective, it allows for detection of intellectual property infringements and hardware Trojans, while it simultaneously can be used for product piracy and malicious circuit manipulations. From a designer's perspective, it is crucial to have an estimate of the costs associated with reverse engineering, yet little is known about this, especially when dealing with obfuscated hardware. The contribution at hand provides new insights into this problem, based on algorithms with sound mathematical underpinnings. Our contributions are threefold: First, we present the graph similarity problem for automating hardware reverse engineering. To this end, we improve several state-of-the-art graph similarity heuristics with optimizations tailored to the hardware context. Second, we propose a novel algorithm based on multiresolutional spectral analysis of adjacency matrices. Third, in three extensively evaluated case studies, namely (1) gate-level netlist reverse engineering, (2) hardware Trojan detection, and (3) assessment of hardware obfuscation, we demonstrate the practical nature of graph similarity algorithms.

Published

2020

40. Tunnel FET‐based ultralow‐power and hardware‐secure circuit design considering p‐i‐n forward leakage

Author

Ramesh Vaddi, Subhendu Kumar Sahoo, Aditya Japa, and Manoj Kumar Majumder

Subjects

Computer science, business.industry, Applied Mathematics, Circuit design, Hardware obfuscation, Electrical engineering, Electrical and Electronic Engineering, business, Tunnel field-effect transistor, Computer Science Applications, Electronic, Optical and Magnetic Materials, Leakage (electronics)

Published

2020

41. On the Construction of Composite Finite Fields for Hardware Obfuscation

Author

Xinmiao Zhang and Yingjie Lao

Subjects

Computer science, business.industry, Cryptography, 02 engineering and technology, 020202 computer hardware & architecture, Theoretical Computer Science, Finite field, Computational Theory and Mathematics, Computer engineering, Hardware and Architecture, Logic gate, Obfuscation, 0202 electrical engineering, electronic engineering, information engineering, Hardware obfuscation, Finite field arithmetic, business, Software, Decoding methods

Abstract

Hardware obfuscation is a technique that modifies the circuit to hide the functionality. Obfuscations through algorithmic modifications add protection in addition to circuit-level techniques, and their effects on the data paths can be analyzed and controlled at the architectural level. Many error-correcting coding and cryptography algorithms are based on finite field arithmetic. For the first time, this paper proposes a hardware obfuscation scheme achieved through varying finite field constructions and primitive element representations. Also the variations are effectively transformed to bit permuters controlled by obfuscation keys to achieve high level of security with very small complexity overheads. To illustrate the effectiveness, the proposed scheme is applied to obfuscate Reed-Solomon decoders, which are broadly used in communication and storage systems. For a (255, 239) RS decoder over finite field $GF(256)$GF(256), the proposed scheme achieves 1239 bits of independent obfuscation key with 4.4 percent area overhead, while yielding no penalty on the throughput and only one extra clock cycle of latency.

Published

2019

42. Hardware Obfuscation Driven by QR Pattern using High Level Transformations

Author

Sharath Kumar D.R.V.A

Subjects

Computer science, business.industry, Embedded system, Computer Science (miscellaneous), Hardware obfuscation, Electrical and Electronic Engineering, business

Published

2019

43. Evaluation of Hardware Obfuscation Techniques using Obfuscation Tool oLLVM

Author

Shuichi Ichikawa, Naoki Fujieda, and Yuumi Matsuoka

Subjects

Obfuscation (software), Computer science, business.industry, Embedded system, Hardware obfuscation, Electrical and Electronic Engineering, business, Industrial and Manufacturing Engineering

Published

2019

44. High-level Intellectual Property Obfuscation via Decoy Constants

Author

Samuel Pagliarini, Marie-Lise Flottes, Jaan Raik, Levent Aksoy, Sophie Dupuis, Felipe Almeida, Quang-Linh Nguyen, Tallinn University of Technology (TTÜ), TEST (TEST), Laboratoire d'Informatique de Robotique et de Microélectronique de Montpellier (LIRMM), and Centre National de la Recherche Scientifique (CNRS)-Université de Montpellier (UM)-Centre National de la Recherche Scientifique (CNRS)-Université de Montpellier (UM)

Subjects

FOS: Computer and information sciences, hardware obfuscation, Computer Science - Cryptography and Security, Computer science, IP obfuscation, Integrated circuit, Automatic test pattern generation, digital FIR filter design, Satisfiability, law.invention, reverse engineering, Computer engineering, law, Logic gate, Obfuscation, Hardware obfuscation, Multiplication, [SPI.NANO]Engineering Sciences [physics]/Micro and nanotechnologies/Microelectronics, Cryptography and Security (cs.CR), Block (data storage), SAT attack

Abstract

International audience; This paper presents a high-level circuit obfuscation technique to prevent the theft of intellectual property (IP) of integrated circuits. In particular, our technique protects a class of circuits that relies on constant multiplications, such as filters and neural networks, where the constants themselves are the IP to be protected. By making use of decoy constants and a key-based scheme, a reverse engineer adversary at an untrusted foundry is rendered incapable of discerning true constants from decoy constants. The time-multiplexed constant multiplication (TMCM) block of such circuits, which realizes the multiplication of an input variable by a constant at a time, is considered as our case study for obfuscation. Furthermore, two TMCM design architectures are taken into account; an implementation using a multiplier and a multiplierless shift-adds implementation. Optimization methods are also applied to reduce the hardware complexity of these architectures. The well-known satisfiability (SAT) and automatic test pattern generation (ATPG) attacks are used to determine the vulnerability of the obfuscated designs. It is observed that the proposed technique incurs small overheads in area, power, and delay that are comparable to the hardware complexity of prominent logic locking methods. Yet, the advantage of our approach is in the insight that constants-instead of arbitrary circuit nodes-become key-protected. Index Terms-hardware obfuscation, reverse engineering, IP obfuscation, SAT attack, digital FIR filter design.

Published

2021

45. Hardware Obfuscation of the 16-bit S-box in the MK-3 Cipher

Author

Jason Blocklove, Michael Thomas Kurdziel, Marcin Lukowiak, Steve Farris, and Stanislaw Radziszowski

Subjects

Reverse engineering, S-box, Cipher, Computer science, Hardware Trojan, Obfuscation, Hardware obfuscation, ComputingMilieux_LEGALASPECTSOFCOMPUTING, Side channel attack, Computer security, computer.software_genre, computer, Block cipher

Abstract

At different stages of the Integrated Circuit (IC) lifecycle there are attacks which threaten to compromise the integrity of the design through piracy, reverse engineering, hardware Trojan insertion, side channel analysis, and other physical attacks. Some of the most notable challenges in this field deal specifically with Intellectual Property (IP) theft and reverse engineering attacks. One method by which some of these concerns can be addressed is by introducing hardware obfuscation to the design in various forms. In this work we evaluate the effectiveness of a few different forms of netlist-level hardware obfuscation of a 16-bit substitution box component of a customizable cipher MK-3. These obfuscation methods were attacked using a satisfiability (SAT) attack, which is able to iteratively rule out classes of keys at once. This has been shown to be very effective against many forms of hardware obfuscation. A method to successfully defend against this attack is described in this paper. This method introduces a modified SIMON block cipher as a One-way Random Function (ORF) that is used to generate an obfuscation key. The S-box obfuscated using this 32-bit key and a round-reduced implementation of the SIMON cipher is shown to be secure against a SAT attack for at least 5 days.

Published

2021

46. Physical Unclonable Functions based Hardware Obfuscation Techniques: A State of the Art

Author

Husam Kareem and Dmitriy Dunaev

Subjects

Reverse engineering, ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS, Hardware security module, Computer science, Physical unclonable function, Hardware obfuscation, State (computer science), Electronics, Architecture, Computer security, computer.software_genre, computer, Task (project management)

Abstract

A clear majority of electronic devices applications used in our daily life require a reliable, secure architecture, e.g., healthcare, social security cards, electronic meters, and smart homes. As a result, many studies are trying to develop appropriate solutions to tackle hardware security threats such as IC piracy, IC overbuilding, reverse engineering, counterfeiting, and tampering. Hardware obfuscation has been introduced as one of the leading robust, low-cost security solutions against different security threats, especially when combined with physical unclonable functions. Considering the inherent irreproducibility of PUFs, this method can provide a high-level security system. However, finding an applicable existent PUF or implementing a new PUF design that meets each hardware obfuscation requirements is not a trivial task. This study reviews and discusses hardware security systems based on PUFs inherited variations and the corresponding hardware obfuscation approaches.

Published

2021

47. SAT-attack Resilience Measure for Access Restricted Circuits

Author

Ioannis Savidis, Saran Phatharodom, and Avesta Sasan

Subjects

021110 strategic, defence & security studies, Class (computer programming), Theoretical computer science, Computer science, 0211 other engineering and technologies, Scan chain, 02 engineering and technology, Measure (mathematics), 020202 computer hardware & architecture, restrict, Threat model, 0202 electrical engineering, electronic engineering, information engineering, Hardware obfuscation, Resilience (network), Hardware_LOGICDESIGN, Electronic circuit

Abstract

With the recent introduction of techniques to restrict scan chain access, a new class of deobfuscation problems emerge, in which the threat model, although similar to deobfuscation of a logic locked circuit, forms a novel class of attack. In this paper, the concept of a logic restricted circuit is generalized and defined. Next, a novel type of SAT-based attack is proposed for the new class of deobfuscation problems, described as a 2-stage SAT-attack. A SAT-attack resilience measure is developed to quantify the security strength of a logic restricted circuit against a SAT-based attack. Finally, the proposed SAT-resilience framework is applied to compare and evaluate effectiveness of example logic restriction schemes.

Published

2021

48. SOMA: Security Evaluation of Obfuscation Methods via Attack Sequencing

Author

Moshiur Rahman, Abdulrahman Alaql, Xinmu Wang, and Swarup Bhunia

Subjects

Reverse engineering, Modality (human–computer interaction), Exploit, Computer science, 02 engineering and technology, Intellectual property, Computer security, computer.software_genre, 020202 computer hardware & architecture, Obfuscation (software), medicine.anatomical_structure, Electronic countermeasure, 0202 electrical engineering, electronic engineering, information engineering, medicine, Hardware obfuscation, 020201 artificial intelligence & image processing, Soma, computer

Abstract

Hardware intellectual properties (IPs) used in diverse electronic systems face several critical security issues during their life cycle, including piracy, reverse engineering, and extraction of design secrets. To combat these issues, pre-silicon hardware obfuscation or logic locking has emerged as a promising solution and has been an active research topic over the past decade. However, in parallel, a number of functional and structural attacks on obfuscation have been discovered by the research community to break the protection provided by the existing obfuscation schemes. These attacks have played a major role in enhancing the security of hardware obfuscation schemes. In this paper, we introduce a novel combined attack modality, referred to as SOMA, which relies on judiciously combining the existing attacks to produce a significantly more powerful one. We demonstrate that such an attack can expose hidden exploits and measure the level of security offered by a given obfuscation technique. SOMA creates a sequence of attacks, where the outcome of each attack is used to guide the next and concludes with a key-refinement measure to restore the functionality of a locked IP. We demonstrate that SOMA can easily break major existing locking schemes that are believed to be secure with an attack accuracy average of 94.88%.

Published

2021

49. Top-down Physical Design of Soft Embedded FPGA Fabrics

Author

Onur Kibar, Oguz Atli, Mohammed Zackriya, Ken Mai, Prashanth Mohan, and Larry Pileggi

Subjects

Very-large-scale integration, Application-specific integrated circuit, business.industry, Computer science, Embedded system, Obfuscation, Hardware_INTEGRATEDCIRCUITS, Netlist, Hardware obfuscation, Physical design, Routing (electronic design automation), business, Field-programmable gate array

Abstract

In recent years, IC reverse engineering and IC fabrication supply chain security have grown to become significant economic and security threats for designers, system integrators, and end customers. Many of the existing logic locking and obfuscation techniques have shown to be vulnerable to attack once the attacker has access to the design netlist either through reverse engineering or through an untrusted fabrication facility. We introduce soft embedded FPGA redaction, a hardware obfuscation approach that allows the designer substitute security-critical IP blocks within a design with a synthesizable eFPGA fabric. This method fully conceals the logic and the routing of the critical IP and is compatible with standard ASIC flows for easy integration and process portability. To demonstrate eFPGA redaction, we obfuscate a RISC-V control path and a GPS P-code generator. We also show that the modified netlists are resilient to SAT attacks with moderate VLSI overheads. The secure RISC-V design has 1.89x area and 2.36x delay overhead while the GPS design has 1.39x area and negligible delay overhead when implemented on an industrial 22nm FinFET CMOS process.

Published

2021

50. Hardware Redaction via Designer-Directed Fine-Grained eFPGA Insertion

Author

Oguz Atli, Onur Kibar, Prashanth Mohan, Joseph Sweeney, Larry Pileggi, and Ken Mai

Subjects

Very-large-scale integration, Software portability, Application-specific integrated circuit, business.industry, Computer science, Embedded system, Obfuscation, Hardware_INTEGRATEDCIRCUITS, Netlist, Hardware obfuscation, Routing (electronic design automation), business, Field-programmable gate array

Abstract

In recent years, IC reverse engineering and IC fabrication supply chain security have grown to become significant economic and security threats for designers, system integrators, and end customers. Many of the existing logic locking and obfuscation techniques have shown to be vulnerable to attack once the attacker has access to the design netlist either through reverse engineering or through an untrusted fabrication facility. We introduce soft embedded FPGA redaction, a hardware obfuscation approach that allows the designer substitute security-critical IP blocks within a design with a synthesizable eFPGA fabric. This method fully conceals the logic and the routing of the critical IP and is compatible with standard ASIC flows for easy integration and process portability. To demonstrate eFPGA redaction, we obfuscate a RISC-V control path and a GPS P-code generator. We also show that the modified netlists are resilient to SAT attacks with moderate VLSI overheads. The secure RISC-V design has 1.89x area and 2.36x delay overhead while the GPS design has 1.39x area and negligible delay overhead when implemented on an industrial 22nm FinFET CMOS process.

Published

2021