TRANSPOSE: Transitional Approaches for Spatially-Aware LFI Resilient FSM Encoding
Finite state machines (FSMs) regulate sequential circuits, including access to sensitive information and privileged CPU states. Courtesy of contemporary research on laser attacks, laser-based fault injection (LFI) is becoming even more precise where an adversary can thwart chip security by altering...
Gespeichert in:
Hauptverfasser: | , , , , |
---|---|
Format: | Artikel |
Sprache: | eng |
Schlagworte: | |
Online-Zugang: | Volltext bestellen |
Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
Zusammenfassung: | Finite state machines (FSMs) regulate sequential circuits, including access
to sensitive information and privileged CPU states. Courtesy of contemporary
research on laser attacks, laser-based fault injection (LFI) is becoming even
more precise where an adversary can thwart chip security by altering individual
flip-flop (FF) values. Different laser models, e.g., bit flip, bit set, and bit
reset, have been developed to appreciate LFI on practical targets. As
traditional approaches may incorporate substantial overhead, state-based SPARSE
and transition-based TAMED countermeasures were proposed in our prior work to
improve FSM resiliency efficiently. TAMED overcame SPARSE's limitation of being
too conservative, and generating multiple LFI resilient encodings for
contemporary LFI models on demand. SPARSE, however, incorporated design layout
information into its vulnerability estimation which makes its vulnerability
estimation metric more accurate. In this paper, we extend TAMED by proposing a
transition-based encoding CAD framework (TRANSPOSE), that incorporates spatial
transitional vulnerability metrics to quantify design susceptibility of FSMs
based on both the bit flip model and the set-reset models. TRANSPOSE also
incorporates floorplan optimization into its framework to accommodate secure
spatial inter-distance of FF-sensitive regions. All TRANSPOSE approaches are
demonstrated on 5 multifarious benchmarks and outperform existing FSM encoding
schemes/frameworks in terms of security and overhead. |
---|---|
DOI: | 10.48550/arxiv.2411.02798 |