MRI: Development of a Testbed for Side Channel Analysis and Security Evaluation (TeSCASE)

MRI：开发侧通道分析和安全评估测试台 (TeSCASE)

• 批准号: 1337854
• 负责人: Yunsi Fei
• 金额: $ 50万
• 依托单位: Northeastern University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2013
• 资助国家: 美国
• 起止时间: 2013-10-01 至 2018-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1337854&HistoricalAwards=false
• 关键词: MRI; Development; Testbed; Side; Channel

Proposal #: 13-37854PI(s): Fei, Yunsi; Kaeli, David R.; Leeser, Miriam E.Institution: Northeastern University Title: MRI/Dev.: A Testbed for Side Channel Analysis and Security Evaluation (TeSCASE)Project Proposed:This project, developing a common free testbed, called TeSCASE, for side-channel analysis and security evaluation of cryptosystems, targets research and development in hardware security. The instrument under development, consisting of two platforms for hardware and software, fulfills the following objectives:- Holistic testbed: For side-channel leakage acquisition, TeSCASE provides both hardware measurement setup on real systems and a set of tools and methodologies for evaluating system specifications at different levels. (Most existing tools target hardware and not the design.)- Comprehensive attack library: The development includes various attacks (power analysis, timing-based, electro-magnetic emanation, and fault analysis) to evaluate the vulnerability/resilience of a target system. - General compatibility: TeSCASE includes measuring interfaces for different devices and consequently can be adapted in diverse application domains.- Open source: Facilitating research proliferation, the instrument results will be made open to the public.Analyzing side-channel information and exploiting it in side-channel attacks is expected to contribute in the understanding of the design, implementation, and new countermeasures. The work facilitates research on developing provable (side-channel analysis) SCA-resilient cryptographic systems that could lead to discoveries and inventions in multiple aspects of hardware security, fundamental side-channel analysis modeling, effective countermeasures, leakage-resilient cryptography, and fields products in security evaluation. This work develops an open holistic testbed for analyzing a system?s side-channel leakage and hardware security. While the testbed hardware platform services various side-channel leakage acquisitions, the software platform controls the hardware interface, simulates designs at different levels, estimates side-channel leakage, analyzes the leaked information, and evaluates hardware security with multiple metrics. The side channel analysis library provides a suite of known side-channel attacks and countermeasures.Broader Impacts:This development project could lead to the formulation of test metrics and evaluation standards. TeSCASE can be incorporated into the design process opening opportunities for exploring security countermeasures early in the design process. In addition to the contribution in research, the instrument might aid the semiconductor business and the government. On the educational side, a new graduate level course and an undergraduate-level lab should raise awareness of the need for security in the design and implementation of computing systems, consequently enabling the training of students with adequate hardware security knowledge and skills. TrustHub and cybersecurity competitions will help to disseminate the results. TeSCASE will be evaluated with selected applications on realistic devices and systems. Furthermore, the project seeks women and minority groups.

提案编号：13-37854PI(s): Fei, Yunsi；David R. Kaeli；机构：东北大学职称：核磁共振/开发项目建议：该项目开发一个通用的免费测试平台，名为TeSCASE，用于加密系统的侧信道分析和安全评估，目标是硬件安全的研究和开发。正在开发的仪器，由硬件和软件两个平台组成，实现以下目标：-整体测试平台：对于侧通道泄漏采集，TeSCASE提供了实际系统的硬件测量设置和一套工具和方法，用于评估不同级别的系统规格。（大多数现有工具针对硬件而不是设计）-综合攻击库：开发包括各种攻击（功率分析，基于时间的，电磁辐射和故障分析），以评估目标系统的脆弱性/弹性。-通用兼容性：TeSCASE包括不同设备的测量接口，因此可以适应不同的应用领域。-开源：促进研究扩散，仪器结果将向公众开放。分析侧信道信息并在侧信道攻击中利用它有望有助于理解设计、实现和新的对策。这项工作有助于开发可证明的（侧信道分析）sca弹性密码系统的研究，可以在硬件安全、基本侧信道分析建模、有效对策、泄漏弹性密码和安全评估领域产品的多个方面带来发现和发明。这项工作为分析系统开发了一个开放的整体测试平台。S侧通道泄漏和硬件安全。测试平台硬件平台提供各种侧信道泄漏采集服务，软件平台控制硬件接口，模拟不同级别的设计，估计侧信道泄漏，分析泄漏信息，并使用多个指标评估硬件安全性。侧信道分析库提供了一套已知的侧信道攻击和对策。更广泛的影响：这个开发项目可能导致测试量度和评估标准的形成。TeSCASE可以合并到设计过程中，为在设计过程的早期探索安全对策提供了机会。除了在研究方面的贡献外，该仪器还可以帮助半导体企业和政府。在教育方面，新的研究生课程和本科生实验室应提高学生对设计和实施计算机系统时需要安全的认识，从而使学生具备足够的硬件安全知识和技能。trustthub和网络安全竞赛将有助于传播这些结果。TeSCASE将通过在实际设备和系统上的选定应用进行评估。此外，该项目寻求妇女和少数群体。