SCRIPT: A CAD Framework for Power Side-channel Vulnerability Assessment Using Information Flow Tracking and Pattern Generation

ACM Trans. Design Autom. Electr. Syst. Pub Date : 2020-05-07 DOI:10.1145/3383445

Adib Nahiyan, Jungmin Park, M. He, Yousef Iskander, Farimah Farahmandi, Domenic Forte, M. Tehranipoor

{"title":"SCRIPT: A CAD Framework for Power Side-channel Vulnerability Assessment Using Information Flow Tracking and Pattern Generation","authors":"Adib Nahiyan, Jungmin Park, M. He, Yousef Iskander, Farimah Farahmandi, Domenic Forte, M. Tehranipoor","doi":"10.1145/3383445","DOIUrl":null,"url":null,"abstract":"Power side-channel attacks (SCAs) have been proven to be effective at extracting secret keys from hardware implementations of cryptographic algorithms. Ideally, the power side-channel leakage (PSCL) of hardware designs of a cryptographic algorithm should be evaluated as early as the pre-silicon stage (e.g., gate level). However, there has been little effort in developing computer-aided design (CAD) tools to accomplish this. In this article, we propose an automated CAD framework called SCRIPT to evaluate information leakage through side-channel analysis. SCRIPT starts by defining the underlying properties of the hardware implementation that can be exploited by side-channel attacks. It then utilizes information flow tracking (IFT) to identify registers that exhibit those properties and, therefore, leak information through the side-channel. Here, we develop an IFT-based side-channel vulnerability metric (SCV) that is utilized by SCRIPT for PSCL assessment. SCV is conceptually similar to the traditionally used signal-to-noise ratio (SNR) metric. However, unlike SNR, which requires thousands of traces from silicon measurements, SCRIPT utilizes formal methods to generate SCV-guided patterns/plaintexts, allowing us to derive SCV using only a few patterns (ideally as low as two) at gate level. SCV estimates PSCL vulnerability at pre-silicon stage based on the number of plaintexts required to attain a specific SCA success rate. The integration of IFT and pattern generation makes SCRIPT efficient, accurate, and generic to be applied to any hardware design. We validate the efficacy of the SCRIPT framework by demonstrating that it can effectively and accurately determine SCA success rates for different AES designs at pre-silicon stage. SCRIPT is orders of magnitude more efficient than traditional pre-silicon PSCL assessment (SNR-based), with an average evaluation time of 15 minutes; whereas, traditional PSCL assessment at pre-silicon stage would require more than a month. We also analyze the PSCL characteristic of the multiplication unit of RISC processor using SCRIPT to demonstrate SCRIPT’s applicability.","PeriodicalId":7063,"journal":{"name":"ACM Trans. Design Autom. Electr. Syst.","volume":"24 1","pages":"26:1-26:27"},"PeriodicalIF":0.0000,"publicationDate":"2020-05-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"25","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM Trans. Design Autom. Electr. Syst.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3383445","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 25

Abstract

Power side-channel attacks (SCAs) have been proven to be effective at extracting secret keys from hardware implementations of cryptographic algorithms. Ideally, the power side-channel leakage (PSCL) of hardware designs of a cryptographic algorithm should be evaluated as early as the pre-silicon stage (e.g., gate level). However, there has been little effort in developing computer-aided design (CAD) tools to accomplish this. In this article, we propose an automated CAD framework called SCRIPT to evaluate information leakage through side-channel analysis. SCRIPT starts by defining the underlying properties of the hardware implementation that can be exploited by side-channel attacks. It then utilizes information flow tracking (IFT) to identify registers that exhibit those properties and, therefore, leak information through the side-channel. Here, we develop an IFT-based side-channel vulnerability metric (SCV) that is utilized by SCRIPT for PSCL assessment. SCV is conceptually similar to the traditionally used signal-to-noise ratio (SNR) metric. However, unlike SNR, which requires thousands of traces from silicon measurements, SCRIPT utilizes formal methods to generate SCV-guided patterns/plaintexts, allowing us to derive SCV using only a few patterns (ideally as low as two) at gate level. SCV estimates PSCL vulnerability at pre-silicon stage based on the number of plaintexts required to attain a specific SCA success rate. The integration of IFT and pattern generation makes SCRIPT efficient, accurate, and generic to be applied to any hardware design. We validate the efficacy of the SCRIPT framework by demonstrating that it can effectively and accurately determine SCA success rates for different AES designs at pre-silicon stage. SCRIPT is orders of magnitude more efficient than traditional pre-silicon PSCL assessment (SNR-based), with an average evaluation time of 15 minutes; whereas, traditional PSCL assessment at pre-silicon stage would require more than a month. We also analyze the PSCL characteristic of the multiplication unit of RISC processor using SCRIPT to demonstrate SCRIPT’s applicability.

查看原文本刊更多论文

基于信息流跟踪和模式生成的电力侧信道脆弱性评估CAD框架

功率侧信道攻击(sca)已被证明可以有效地从加密算法的硬件实现中提取密钥。理想情况下，加密算法硬件设计的功率侧信道泄漏(PSCL)应该早在硅前阶段(例如闸级)进行评估。然而，在开发计算机辅助设计(CAD)工具来实现这一目标方面几乎没有什么努力。在本文中，我们提出了一个名为SCRIPT的自动化CAD框架，通过侧通道分析来评估信息泄漏。SCRIPT首先定义硬件实现的底层属性，这些属性可以被侧信道攻击利用。然后，它利用信息流跟踪(IFT)来识别显示这些属性的寄存器，从而通过侧信道泄漏信息。在这里，我们开发了一个基于ift的侧通道漏洞度量(SCV)，该度量被SCRIPT用于PSCL评估。SCV在概念上类似于传统上使用的信噪比(SNR)度量。然而，与SNR不同，SNR需要来自硅测量的数千条迹线，SCRIPT利用形式化方法生成SCV引导模式/明文，允许我们在门级仅使用少数模式(理想情况下低至两个)派生SCV。SCV根据获得特定SCA成功率所需的明文数量估计pre-silicon阶段的PSCL漏洞。IFT和模式生成的集成使得SCRIPT高效、准确、通用，可以应用于任何硬件设计。我们通过证明SCRIPT框架可以有效准确地确定硅前期不同AES设计的SCA成功率来验证其有效性。SCRIPT比传统的硅前PSCL评估(基于信噪比)效率高几个数量级，平均评估时间为15分钟;而传统的PSCL预硅阶段评估则需要一个多月的时间。本文还利用SCRIPT对RISC处理器乘法单元的PSCL特性进行了分析，以说明SCRIPT的适用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

ACM Trans. Design Autom. Electr. Syst.

自引率

0.00%

发文量