Don't CWEAT It: Toward CWE Analysis Techniques in Early Stages of Hardware Design

Don't CWEAT It: Toward CWE Analysis Techniques in Early Stages of Hardware Design

To help prevent hardware security vulnerabilities from propagating to later design stages where fixes are costly, it is crucial to identify security concerns as early as possible, such as in RTL designs. In this work, we investigate the practical implications and feasibility of producing a set of se...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:arXiv.org 2022-09
Hauptverfasser: Baleegh Ahmad, Wei-Kai, Liu, Collini, Luca, Hammond Pearce, Fung, Jason M, Valamehr, Jonathan, Bidmeshki, Mohammad, Sapiecha, Piotr, Brown, Steve, Chakrabarty, Krishnendu, Karri, Ramesh, Tan, Benjamin
Format: Artikel
Sprache:eng
Schlagworte:
Computer Science - Cryptography and Security
Hardware
Microprocessors
Scanners
Security
System on chip
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:To help prevent hardware security vulnerabilities from propagating to later design stages where fixes are costly, it is crucial to identify security concerns as early as possible, such as in RTL designs. In this work, we investigate the practical implications and feasibility of producing a set of security-specific scanners that operate on Verilog source files. The scanners indicate parts of code that might contain one of a set of MITRE's common weakness enumerations (CWEs). We explore the CWE database to characterize the scope and attributes of the CWEs and identify those that are amenable to static analysis. We prototype scanners and evaluate them on 11 open source designs - 4 system-on-chips (SoC) and 7 processor cores - and explore the nature of identified weaknesses. Our analysis reported 53 potential weaknesses in the OpenPiton SoC used in Hack@DAC-21, 11 of which we confirmed as security concerns.
ISSN:2331-8422
DOI:10.48550/arxiv.2209.01291