Detecting/preventing information leakage on the memory bus due to malicious hardware

Authors:
Abhishek Das;Gokhan Memik;Joseph Zambreno;Alok Choudhary
Affiliations:
Northwestern University, Evanston, IL;Northwestern University, Evanston, IL;Iowa State University, Ames, IA;Northwestern University, Evanston, IL
Venue:
Proceedings of the Conference on Design, Automation and Test in Europe
Year:
2010

Citing 10
Cited 1

The SPLASH-2 programs: characterization and methodological considerations

ISCA '95 Proceedings of the 22nd annual international symposium on Computer architecture
Hacking the Xbox: An Introduction to Reverse Engineering

Hacking the Xbox: An Introduction to Reverse Engineering
Scan Based Side Channel Attack on Dedicated Hardware Implementations of Data Encryption Standard

ITC '04 Proceedings of the International Test Conference on International Test Conference
MiBench: A free, commercially representative embedded benchmark suite

WWC '01 Proceedings of the Workload Characterization, 2001. WWC-4. 2001 IEEE International Workshop
Compilers: Principles, Techniques, and Tools (2nd Edition)

Compilers: Principles, Techniques, and Tools (2nd Edition)
Trojan Detection using IC Fingerprinting

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
Designing and implementing malicious hardware

LEET'08 Proceedings of the 1st Usenix Workshop on Large-Scale Exploits and Emergent Threats
EPIC: ending piracy of integrated circuits

Proceedings of the conference on Design, automation and test in Europe
Designing and implementing malicious processors

Proceedings of the 13th international conference on Architectural support for programming languages and operating systems
The Hunt For The Kill Switch

IEEE Spectrum

SAFER PATH: security architecture using fragmented execution and replication for protection against trojaned hardware

DATE '12 Proceedings of the Conference on Design, Automation and Test in Europe

Quantified Score

Hi-index	0.00

Visualization

Abstract

An increasing concern amongst designers and integrators of military and defense-related systems is the underlying security of the individual microprocessor components that make up these systems. Malicious circuitry can be inserted and hidden at several stages of the design process through the use of third-party Intellectual Property (IP), design tools, and manufacturing facilities. Such hardware Trojan circuitry has been shown to be capable of shutting down the main processor after a random number of cycles, broadcasting sensitive information over the bus, and bypassing software authentication mechanisms. In this work, we propose an architecture that can prevent information leakage due to such malicious hardware. Our technique is based on guaranteeing certain behavior in the memory system, which will be checked at an external guardian core that "approves" each memory request. By sitting between off-chip memory and the main core, the guardian core can monitor bus activity and verify the compiler-defined correctness of all memory writes. Experimental results on a conventional x86 platform demonstrate that application binaries can be statically re-instrumented to coordinate with the guardian core to monitor offchip access, resulting in less than 60% overhead for the majority of the studied benchmarks. 1