Cyber System:Collaborative Research: Security Aware Design for Test Methods

网络系统：协作研究：测试方法的安全意识设计

• 批准号: 0621856
• 负责人: Ramesh Karri
• 金额: --
• 依托单位: Polytechnic University of New York
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2006
• 资助国家: 美国
• 起止时间: 2006-09-01 至 2010-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0621856&HistoricalAwards=false
• 关键词: Cyber; System; Collaborative; Research; Security

Design for Test (DFT) techniques improve access to the internal state of hardware devices either by improving control of internal nodes from the primary inputs or by improving observation of values on internal nodes at the primary outputs or both. On the other hand, from a security perspective, hardware devices should minimize the controllability and observability of the internal state to a minimum and thereby minimize/eliminate access to sensitive on-chip information. The sensitive information that needs to be protected may include secret keys stored on cryptographic devices, valuable Intellectual Property incorporated into designs and security software running on general purpose processors.Intellectual merit: The security vulnerabilities introduced by traditional DFT techniques in a variety of devices including cryptographic hardware, embedded processors running security software and hardware devices that contain valuable intellectual property will be investigated. Not all DFT techniques may introduce security vulnerabilities. Even a given DFT technique may not introduce security vulnerabilities in all chips and in all embedded processors. For example, in large chips and processors with over tens of thousands of flip flops, test data is typically compressed on chip. This in itself makes the task of an attacker quite difficult nay impossible. However, in embedded processors and crypto accelerators used in low end smart cards, test data is not compressed owing to the limited number of flip flops. We will systematically characterize the vulnerabilities by accounting for these factors. The DFT mechanisms that improve testability without compromising security will also be investigated. The PIs will also study the interaction and trade-offs between Testability and Security by understanding the side channels introduced by popular Scan DFT and its variants such as scan with on-chip compression and decompression circuitry and develop security-aware DFT techniques such as secure-scan and encrypted-scan. Finally, the proposal will validate the security-aware DFT techniques by launching DFT-based attacks that they were vulnerable to and by evaluating the resulting testability.Broader impacts: This research will bring the benefits of smartcard and implantable biomedical electronic devices without compromising their financial and medical security to the general population. The research will demonstrate that security is an important design metric of any design and not just security hardware. This research will play a prominent role in the education of graduate and undergraduate students at Polytechnic and at University of Illinois. The PIs will introduce security aware test in a graduate project oriented courses. Outstanding undergraduates will participate in projects related to this project as part of an undergraduate Senior Design Project for Computer Engineering sequence. At University of Illinois, the PI will reform a sequence of courses to focus on secure embedded system design.

可测性设计（DFT）技术通过改进从主输入对内部节点的控制或通过改进在主输出处对内部节点上的值的观察或两者来改进对硬件设备的内部状态的访问。另一方面，从安全的角度来看，硬件设备应该将内部状态的可控性和可观察性最小化，从而最小化/消除对敏感片上信息的访问。需要保护的敏感信息可能包括存储在加密设备上的密钥、设计中包含的宝贵知识产权以及在通用处理器上运行的安全软件。传统DFT技术在各种设备中引入的安全漏洞，包括加密硬件，将研究运行包含有价值的知识产权的安全软件和硬件设备的嵌入式处理器。并非所有DFT技术都可能引入安全漏洞。即使是给定的DFT技术也可能不会在所有芯片和所有嵌入式处理器中引入安全漏洞。例如，在具有超过数万个触发器的大型芯片和处理器中，测试数据通常在芯片上被压缩。这本身就使得攻击者的任务变得相当困难甚至不可能。然而，在低端智能卡中使用的嵌入式处理器和加密加速器中，由于触发器数量有限，测试数据不会被压缩。我们将通过考虑这些因素来系统地描述脆弱性。DFT机制，提高可测试性，而不损害安全性也将进行调查。PI还将通过了解流行的扫描DFT及其变体（例如使用片上压缩和解压缩电路进行扫描）引入的边通道，研究可测试性和安全性之间的相互作用和权衡，并开发安全感知DFT技术，例如安全扫描和加密扫描。最后，该提案将通过启动基于DFT的攻击，他们是脆弱的，并通过评估所产生的testability.Broader影响验证安全意识DFT技术：这项研究将带来的好处，可移植性和植入式生物医学电子设备，而不损害他们的财务和医疗安全的一般人群。该研究将证明，安全性是任何设计的重要设计指标，而不仅仅是安全硬件。这项研究将在理工学院和伊利诺伊大学的研究生和本科生的教育中发挥突出的作用。PI将在研究生项目导向课程中引入安全意识测试。优秀的本科生将参加与此项目相关的项目，作为计算机工程本科高级设计项目的一部分。在伊利诺伊大学，PI将改革一系列课程，重点放在安全的嵌入式系统设计。