CRII: SaTC: Design Space Modeling for Logic Obfuscation to Enable System-Wide Security during IC Manufacture and Test

CRII：SaTC：逻辑混淆的设计空间建模，以在 IC 制造和测试期间实现系统范围的安全

• 批准号: 2245573
• 负责人: Michael Zuzak
• 金额: $ 17.47万
• 依托单位: Rochester Institute of Tech
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2023
• 资助国家: 美国
• 起止时间: 2023-03-15 至 2025-02-28
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2245573&HistoricalAwards=false
• 关键词: CRII; SaTC; Design; Space; Modeling

Due to the rising cost of semiconductor manufacturing, computer chip designers are increasingly reliant on offshore manufacturers. These manufacturers are generally considered to be untrusted, driving concerns of intellectual property (IP) piracy and theft. Logic obfuscation, also called logic locking, was developed to mitigate these threats, however, its effectiveness varies widely based on how obfuscation resources are allocated throughout a system. This project studies how to model, automate, and evaluate the high-level configuration of logic obfuscation in a system to maximize security with minimal design overhead. The project's novelties are the system-wide view of the obfuscation resource allocation problem and the framework to generate mathematical models for this allocation problem. The purpose of these models is to automatically identify effective distributions of budgeted obfuscation resources in varied computer chips and provide intuition on how obfuscation secures a complex system. The project's broader significance and importance are in lowering the barrier to developing secure computer chips for high-trust applications (e.g., healthcare, defense, finance, and automotive) through automation. The integration of education and research is a key objective. This includes research opportunities for graduate and undergraduate students as well as open-source course modules to train next-generation security experts for the workforce. This project bridges the knowledge gap between combinational, gate-level logic obfuscation schemes and their security impact in the larger integrated circuit they protect. Specifically, the project develops a design space modeling framework for logic obfuscation system configuration in order to budget obfuscation resources, allocate resources to design regions, and specify obfuscation schemes in these regions. Given a fixed budget of various obfuscation resources, these models automatically identify obfuscation configurations that fulfill system-wide security goals with minimal design overhead. The research artifacts are 1) quantifiable system security metrics for obfuscation, 2) an open-source design space modeling framework for obfuscation, and 3) a verification of generated models.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

由于半导体制造成本的上升，计算机芯片设计师越来越依赖于离岸制造商。这些制造商通常被认为是不可信的，从而引发了对知识产权（IP）盗版和盗窃的担忧。逻辑混淆，也称为逻辑锁定，是为了减轻这些威胁而开发的，然而，其有效性根据混淆资源在整个系统中的分配方式而变化很大。这个项目研究如何在系统中建模、自动化和评估逻辑混淆的高级配置，以最小的设计开销来最大化安全性。该项目的新颖之处是混淆资源分配问题的系统范围视图和为该分配问题生成数学模型的框架。这些模型的目的是自动识别各种计算机芯片中预算混淆资源的有效分布，并提供关于混淆如何保护复杂系统的直观信息。该项目更广泛的意义和重要性在于降低了为高信任应用开发安全计算机芯片的障碍（例如，医疗保健、国防、金融和汽车）。教育与研究的结合是一个关键目标。这包括为研究生和本科生提供的研究机会，以及为员工培训下一代安全专家的开源课程模块。该项目弥合了组合，门级逻辑混淆方案及其在更大的集成电路中的安全影响之间的知识差距。具体而言，该项目开发了一个设计空间建模框架的逻辑混淆系统配置，以预算混淆资源，分配资源的设计区域，并指定在这些地区的混淆方案。给定各种混淆资源的固定预算，这些模型自动识别混淆配置，以最小的设计开销实现系统范围的安全目标。研究成果包括：1）用于混淆的可量化系统安全指标; 2）用于混淆的开源设计空间建模框架; 3）生成模型的验证。该奖项反映了NSF的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。

项目成果

Exploiting Logic Locking for a Neural Trojan Attack on Machine Learning Accelerators

• DOI: 10.1145/3583781.3590242
• 发表时间: 2023-04
• 期刊: Proceedings of the Great Lakes Symposium on VLSI 2023
• 作者: Hongye Xu;Dongfang Liu;Cory E. Merkel;Michael Zuzak

Security-Aware Resource Binding to Enhance Logic Obfuscation

安全感知资源绑定以增强逻辑混淆

• DOI: 10.1109/tcad.2023.3294453
• 发表时间: 2023
• 期刊: IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems
• 影响因子: 2.9
• 作者: Zuzak, Michael;Liu, Yuntao;Srivastava, Ankur
• 通讯作者: Srivastava, Ankur