Trusted Electronic Systems with Untrusted COTS

2021 22nd International Symposium on Quality Electronic Design (ISQED) Pub Date : 2021-04-07 DOI:10.1109/ISQED51717.2021.9424257

Shuo Yang, Prabuddha Chakraborty, Patanjali Slpsk, S. Bhunia

{"title":"Trusted Electronic Systems with Untrusted COTS","authors":"Shuo Yang, Prabuddha Chakraborty, Patanjali Slpsk, S. Bhunia","doi":"10.1109/ISQED51717.2021.9424257","DOIUrl":null,"url":null,"abstract":"The challenges of custom integrated circuits (IC) design have made it prevalent to integrate commercial-off-the-shelf (COTS) components (micro-controllers, FPGAs, etc.) in today’s designs. While this approach eases the design challenges and improves productivity, it also gives rise to diverse security concerns. One such concern is the possibility of malicious hardware modifications, also called hardware Trojan attacks, by untrusted parties involved in the manufacturing or distribution of COTS devices. While Hardware Trojan detection is an active research topic in the field of microelectronics security, most methods assume the availability of a golden design/chip, which is impractical in the case of a COTS device. In this paper, we discuss challenges with detecting Trojan in COTS components, and introduce a Trojan detection method that applies unsupervised learning. We utilize side-channel power signatures to cluster and isolate chips with Trojans. The proposed method is suitable for trust verification of COTS components by an original equipment manufacturer (OEM) before system integration. In our method, the design house creates a set of security validation test vectors available to the tester (e.g., OEM). The OEM can also generate the test vectors using the block-level diagrams provided by the design house. Power signatures are generated for all the chips under test using these test vectors. We use the generated power signatures to apply feature extraction followed by clustering to group the chips into bins. Through this process, we divide the chips into distinct bins and distinguish the Trojan-inserted chips from the Trojan-free ones. The bin with golden chips can be identified by extensive testing and reverse engineering of one chip sampled from each bin. We utilize two clustering techniques K-Means, and Expectation-Maximization (EM) to perform a comparative analysis. Additionally, we perform extensive experiments to assert our method’s effectiveness and obtain over 98% accuracy on the clustering of FPGA chips with both combinational and sequential Trojans.","PeriodicalId":123018,"journal":{"name":"2021 22nd International Symposium on Quality Electronic Design (ISQED)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-04-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 22nd International Symposium on Quality Electronic Design (ISQED)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISQED51717.2021.9424257","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

The challenges of custom integrated circuits (IC) design have made it prevalent to integrate commercial-off-the-shelf (COTS) components (micro-controllers, FPGAs, etc.) in today’s designs. While this approach eases the design challenges and improves productivity, it also gives rise to diverse security concerns. One such concern is the possibility of malicious hardware modifications, also called hardware Trojan attacks, by untrusted parties involved in the manufacturing or distribution of COTS devices. While Hardware Trojan detection is an active research topic in the field of microelectronics security, most methods assume the availability of a golden design/chip, which is impractical in the case of a COTS device. In this paper, we discuss challenges with detecting Trojan in COTS components, and introduce a Trojan detection method that applies unsupervised learning. We utilize side-channel power signatures to cluster and isolate chips with Trojans. The proposed method is suitable for trust verification of COTS components by an original equipment manufacturer (OEM) before system integration. In our method, the design house creates a set of security validation test vectors available to the tester (e.g., OEM). The OEM can also generate the test vectors using the block-level diagrams provided by the design house. Power signatures are generated for all the chips under test using these test vectors. We use the generated power signatures to apply feature extraction followed by clustering to group the chips into bins. Through this process, we divide the chips into distinct bins and distinguish the Trojan-inserted chips from the Trojan-free ones. The bin with golden chips can be identified by extensive testing and reverse engineering of one chip sampled from each bin. We utilize two clustering techniques K-Means, and Expectation-Maximization (EM) to perform a comparative analysis. Additionally, we perform extensive experiments to assert our method’s effectiveness and obtain over 98% accuracy on the clustering of FPGA chips with both combinational and sequential Trojans.

查看原文本刊更多论文

具有不可信COTS的可信电子系统

定制集成电路(IC)设计的挑战使得在当今的设计中集成商业现货(COTS)组件(微控制器，fpga等)变得普遍。虽然这种方法减轻了设计挑战并提高了生产率，但它也引起了各种安全问题。其中一个担忧是恶意硬件修改的可能性，也称为硬件木马攻击，由参与制造或分发COTS设备的不受信任的各方进行。虽然硬件木马检测是微电子安全领域的一个活跃研究课题，但大多数方法都假设有黄金设计/芯片的可用性，这在COTS设备的情况下是不切实际的。本文讨论了在COTS组件中检测木马的挑战，并介绍了一种应用无监督学习的木马检测方法。我们利用侧信道功率特征来集群和隔离带有木马的芯片。该方法适用于原始设备制造商(OEM)在系统集成前对COTS组件进行信任验证。在我们的方法中，设计公司为测试人员(例如OEM)创建了一组可用的安全验证测试向量。OEM还可以使用设计公司提供的块级图生成测试向量。使用这些测试向量为所有被测芯片生成功率签名。我们使用生成的功率签名进行特征提取，然后进行聚类，将芯片分组到箱子中。通过这个过程，我们将芯片分成不同的箱子，并将植入木马的芯片与未植入木马的芯片区分开来。有黄金芯片的箱子可以通过广泛的测试和从每个箱子中采样的一个芯片的逆向工程来识别。我们使用两种聚类技术K-Means和期望最大化(EM)来进行比较分析。此外，我们进行了广泛的实验来证明我们的方法的有效性，并在具有组合和顺序木马的FPGA芯片聚类上获得超过98%的准确率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 22nd International Symposium on Quality Electronic Design (ISQED)

自引率

0.00%

发文量