Multi-Level Access Protection for Future IEEE P1687.1 IJTAG Networks

Abstract

Embedded instruments are responsible for aiding in a wide range of tasks engineers must perform on integrated circuits (ICs), including testing, debugging, and analysis. The IEEE 1687 IJTAG standard provides efficient access to these instruments without specifying proper measures to establish access control to sensitive data on the ICs. Previously, the impact of this exposure was generally limited to local attackers obtaining proprietary information from a device to which they have physical access. However, newer endeavors such as IEEE P1687.1 aim to extend IJTAG access to other serial ports, broadening the attack surface to additional local and remote attackers alike. In order to protect these components from local and remote attackers, we describe a lightweight and low-cost protocol to authenticate users that offers solutions to access control, key distribution, and insecure secrets stored on-chip.