A parallelized way to provide data encryption and integrity checking on a processor-memory bus

Authors:
Reouven Elbaz;Lionel Torres;Gilles Sassatelli;Pierre Guillemin;Michel Bardouillet;Albert Martinez
Affiliations:
University of Montpellier, Montpellier, FRANCE and STMicroelectronics, Rousset, FRANCE;University of Montpellier, Montpellier, FRANCE;University of Montpellier, Montpellier, FRANCE;STMicroelectronics, Rousset, FRANCE;STMicroelectronics, Rousset, FRANCE;STMicroelectronics, Rousset, FRANCE
Venue:
Proceedings of the 43rd annual Design Automation Conference
Year:
2006

Citing 6
Cited 10

Cipher Instruction Search Attack on the Bus-Encryption Security Microcontroller DS5002FP

IEEE Transactions on Computers
Architectural support for copy and tamper resistant software

ASPLOS IX Proceedings of the ninth international conference on Architectural support for programming languages and operating systems
Handbook of Applied Cryptography

Handbook of Applied Cryptography
AEGIS: architecture for tamper-evident and tamper-resistant processing

ICS '03 Proceedings of the 17th annual international conference on Supercomputing
Caches and Hash Trees for Efficient Memory Integrity Verification

HPCA '03 Proceedings of the 9th International Symposium on High-Performance Computer Architecture
Efficient Memory Integrity Verification and Encryption for Secure Processors

Proceedings of the 36th annual IEEE/ACM International Symposium on Microarchitecture

On-Chip Communication Architectures: System on Chip Interconnect

On-Chip Communication Architectures: System on Chip Interconnect
NOC-centric Security of Reconfigurable SoC

NOCS '07 Proceedings of the First International Symposium on Networks-on-Chip
TEC-Tree: A Low-Cost, Parallelizable Tree for Efficient Defense Against Memory Replay Attacks

CHES '07 Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems
A security approach for off-chip memory in embedded microprocessor systems

Microprocessors & Microsystems
Hardware Mechanisms for Memory Authentication: A Survey of Existing Techniques and Engines

Transactions on Computational Science IV
MAC Precomputation with Applications to Secure Memory

ISC '09 Proceedings of the 12th International Conference on Information Security
Block-level added redundancy explicit authentication for parallelized encryption and integrity checking of processor-memory transactions

Transactions on computational science X
A comparison of two approaches providing data encryption and authentication on a processor memory bus

PATMOS'06 Proceedings of the 16th international conference on Integrated Circuit and System Design: power and Timing Modeling, Optimization and Simulation
Memory encryption for smart cards

CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Configurable memory security in embedded systems

ACM Transactions on Embedded Computing Systems (TECS)

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper describes a novel engine, called PE-ICE (Parallelized Encryption and Integrity Checking Engine), enabling to guarantee confidentiality and integrity of data exchanged between a SoC (System on Chip) and its external memory. The PE-ICE approach is based on an existing block-encryption algorithm to which the integrity checking capability is added. Simulation results show that the performance overhead of PE-ICE remains low (below 4%) compared to block-encryption-only systems (which provide data confidentiality only).