Early Validation of SoCs Security Architecture Against Timing Flows Using SystemC-based VPs

2021 IEEE/ACM International Conference On Computer Aided Design (ICCAD) Pub Date : 2021-11-01 DOI:10.1109/ICCAD51958.2021.9643579

Mehran Goli, R. Drechsler

{"title":"Early Validation of SoCs Security Architecture Against Timing Flows Using SystemC-based VPs","authors":"Mehran Goli, R. Drechsler","doi":"10.1109/ICCAD51958.2021.9643579","DOIUrl":null,"url":null,"abstract":"Modern System-on-Chips (SoCs) have been increasingly deployed in critical aspects of our lives. As a consequence, they have access to a large number of secret assets that must be protected against unauthorized access. In order to provide sound security guarantees, an SoC typically has a security architecture as authentication mechanisms to control the access of different Intellectual Properties (IPs) to secret assets. Since the SoC's security architecture cannot be changed after production, it is of utmost importance to detect any security flaws in the design phase. Moreover, to prevent costly fixes in later stages, security validation should start as early as possible. In this paper, we propose a novel approach to validate the security architecture of a given SoC against timing flows using SystemC-based Virtual Prototype (VP) and static information flow tracking technique at the system level. Experimental results on two real-world VP-based SoCs demonstrate the scalability and applicability of the proposed approach in identifying timing flows.","PeriodicalId":370791,"journal":{"name":"2021 IEEE/ACM International Conference On Computer Aided Design (ICCAD)","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE/ACM International Conference On Computer Aided Design (ICCAD)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCAD51958.2021.9643579","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

Modern System-on-Chips (SoCs) have been increasingly deployed in critical aspects of our lives. As a consequence, they have access to a large number of secret assets that must be protected against unauthorized access. In order to provide sound security guarantees, an SoC typically has a security architecture as authentication mechanisms to control the access of different Intellectual Properties (IPs) to secret assets. Since the SoC's security architecture cannot be changed after production, it is of utmost importance to detect any security flaws in the design phase. Moreover, to prevent costly fixes in later stages, security validation should start as early as possible. In this paper, we propose a novel approach to validate the security architecture of a given SoC against timing flows using SystemC-based Virtual Prototype (VP) and static information flow tracking technique at the system level. Experimental results on two real-world VP-based SoCs demonstrate the scalability and applicability of the proposed approach in identifying timing flows.

查看原文本刊更多论文

基于系统c的vp的soc安全架构对时序流的早期验证

现代系统芯片(soc)已经越来越多地部署在我们生活的关键方面。因此，他们可以访问大量的秘密资产，这些资产必须受到保护，防止未经授权的访问。为了提供良好的安全保障，SoC通常具有安全架构作为认证机制，以控制不同知识产权(ip)对秘密资产的访问。由于SoC的安全架构在生产后无法更改，因此在设计阶段检测任何安全漏洞至关重要。此外，为了防止在后期阶段进行代价高昂的修复，安全验证应该尽早开始。在本文中，我们提出了一种新的方法来验证给定SoC的安全架构对定时流使用基于systemc的虚拟原型(VP)和静态信息流跟踪技术在系统级。在两个现实世界的基于vp的soc上的实验结果证明了所提出的方法在识别时序流方面的可扩展性和适用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 IEEE/ACM International Conference On Computer Aided Design (ICCAD)

自引率

0.00%

发文量