MRI: Development of a Testbed for Side Channel Analysis and Security Evaluation (TeSCASE)

MRI：开发侧通道分析和安全评估测试台 (TeSCASE)

• 批准号: 1337854
• 负责人: Yunsi Fei
• 金额: $ 50万
• 依托单位: Northeastern University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2013
• 资助国家: 美国
• 起止时间: 2013-10-01 至 2018-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1337854&HistoricalAwards=false
• 关键词: MRI; Development; Testbed; Side; Channel

Proposal #: 13-37854PI(s): Fei, Yunsi; Kaeli, David R.; Leeser, Miriam E.Institution: Northeastern University Title: MRI/Dev.: A Testbed for Side Channel Analysis and Security Evaluation (TeSCASE)Project Proposed:This project, developing a common free testbed, called TeSCASE, for side-channel analysis and security evaluation of cryptosystems, targets research and development in hardware security. The instrument under development, consisting of two platforms for hardware and software, fulfills the following objectives:- Holistic testbed: For side-channel leakage acquisition, TeSCASE provides both hardware measurement setup on real systems and a set of tools and methodologies for evaluating system specifications at different levels. (Most existing tools target hardware and not the design.)- Comprehensive attack library: The development includes various attacks (power analysis, timing-based, electro-magnetic emanation, and fault analysis) to evaluate the vulnerability/resilience of a target system. - General compatibility: TeSCASE includes measuring interfaces for different devices and consequently can be adapted in diverse application domains.- Open source: Facilitating research proliferation, the instrument results will be made open to the public.Analyzing side-channel information and exploiting it in side-channel attacks is expected to contribute in the understanding of the design, implementation, and new countermeasures. The work facilitates research on developing provable (side-channel analysis) SCA-resilient cryptographic systems that could lead to discoveries and inventions in multiple aspects of hardware security, fundamental side-channel analysis modeling, effective countermeasures, leakage-resilient cryptography, and fields products in security evaluation. This work develops an open holistic testbed for analyzing a system?s side-channel leakage and hardware security. While the testbed hardware platform services various side-channel leakage acquisitions, the software platform controls the hardware interface, simulates designs at different levels, estimates side-channel leakage, analyzes the leaked information, and evaluates hardware security with multiple metrics. The side channel analysis library provides a suite of known side-channel attacks and countermeasures.Broader Impacts:This development project could lead to the formulation of test metrics and evaluation standards. TeSCASE can be incorporated into the design process opening opportunities for exploring security countermeasures early in the design process. In addition to the contribution in research, the instrument might aid the semiconductor business and the government. On the educational side, a new graduate level course and an undergraduate-level lab should raise awareness of the need for security in the design and implementation of computing systems, consequently enabling the training of students with adequate hardware security knowledge and skills. TrustHub and cybersecurity competitions will help to disseminate the results. TeSCASE will be evaluated with selected applications on realistic devices and systems. Furthermore, the project seeks women and minority groups.

提案编号：13- 37854 PI：Fei，Yunsi; Kaeli，大卫R.; Leeser，Miriam E.机构：东北大学标题： MRI/器械：侧信道分析和安全评估测试平台（TeSCASE）项目建议：该项目旨在开发一个用于密码系统侧信道分析和安全评估的通用免费测试平台TeSCASE，目标是硬件安全方面的研究和开发。正在开发的仪器由硬件和软件两个平台组成，实现了以下目标：-整体测试平台：对于侧通道泄漏采集，TeSCASE提供了真实的系统上的硬件测量设置，以及一套用于评估不同级别系统规格的工具和方法。(Most现有的工具针对硬件而不是设计。综合攻击库：开发包括各种攻击（功率分析，基于时序，电磁辐射和故障分析），以评估目标系统的脆弱性/弹性。 - 通用兼容性：TeSCASE包括适用于不同设备的测量接口，因此可适用于不同的应用领域。开源：为了促进研究扩散，仪器结果将向公众开放。分析侧信道信息并将其用于侧信道攻击，预计将有助于理解设计，实施和新对策。这项工作促进了对开发可证明的（侧信道分析）SCA弹性密码系统的研究，这些系统可以在硬件安全，基本侧信道分析建模，有效对策，泄漏弹性密码学和安全评估领域产品的多个方面进行发现和发明。这项工作开发了一个开放的整体测试平台，用于分析系统？的侧信道泄漏和硬件安全性。在测试平台硬件平台服务于各种侧信道泄漏采集的同时，软件平台控制硬件接口，模拟不同级别的设计，估计侧信道泄漏，分析泄漏信息，并使用多个度量来评估硬件安全性。侧信道分析库提供了一套已知的侧信道攻击和对策。更广泛的影响：该开发项目可能导致制定测试指标和评估标准。TeSCASE可以被纳入设计过程中，为在设计过程的早期探索安全对策提供了机会。除了在研究方面的贡献外，该仪器还可以帮助半导体企业和政府。在教育方面，一个新的研究生课程和一个本科生实验室应该提高对计算系统设计和实施中安全需求的认识，从而使学生能够获得足够的硬件安全知识和技能。TrustHub和网络安全竞赛将有助于传播结果。TeSCASE将在实际设备和系统上使用选定的应用程序进行评估。此外，该项目寻求妇女和少数群体。