Affiliation:
1. DFKI Bremen and University of Bremen , Bremen , Germany
Abstract
Abstract
Modern System-on-Chips (SoCs) are notoriously insecure. Hence, the fundamental security feature of IP isolation is heavily used, e. g., secured Memory Mapped IOs (MMIOs), or secured address ranges in case of memories, are marked as non-accessible. One way to provide strong assurance of security is to define isolation as information flow policy in hardware using the notion of non-interference. Since, an insecure hardware opens up the door for attacks across the entire system stack (from software down to hardware), the security validation process should start as early as possible in the SoC design cycle, i. e. at Electronic System Level (ESL). Hence, in this paper we propose the first dynamic information flow analysis at ESL. Our approach allows to validate the run-time behavior of a given SoC implemented using Virtual Prototypes (VPs) against security threat models, such as information leakage (confidentiality) and unauthorized access to data in a memory (integrity). Experiments show the applicability and efficacy of the proposed method on various VPs including a real-world system.
Funder
Bundesministerium für Bildung und Forschung
Deutsche Forschungsgemeinschaft
Reference36 articles.
1. Accellera Systems Initiative. http://www.accellera.org/downloads/standards/systemc, 2016.
2. A. Ardeshiricham, W. Hu, J. Marxen, and R. Kastner. Register transfer level information flow tracking for provably secure hardware design. In DATE, pages 1691–1696. IEEE, 2017.
3. I. S. Association et al.IEEE standard for standard SystemC language reference manual. IEEE Computer Society, 2012.
4. J. Aynsley. TLM-2.0 base protocol checker. https://www.doulos.com/knowhow/systemc/tlm2. Accessed: 2018-01-30.
5. J. Aynsley, editor. OSCI TLM-2.0 Language Reference Manual. Open SystemC Initiative (OSCI), 2009.
Cited by
14 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Verification;Formal and Practical Techniques for the Complex System Design Process using Virtual Prototypes;2024
2. SystemC Model of Power Side-Channel Attacks Against AI Accelerators: Superstition or not?;2023 IEEE/ACM International Conference on Computer Aided Design (ICCAD);2023-10-28
3. VAST: Validation of VP-based Heterogeneous Systems against Availability Security Properties using Static Information Flow Tracking;2023 24th International Symposium on Quality Electronic Design (ISQED);2023-04-05
4. Anwendung II: Sicherheitsvalidierung;Automatisierte Analyse von virtuellen Prototypen auf der Ebene elektronischer Systeme;2023
5. Early SoCs Information Flow Policies Validation using SystemC-based Virtual Prototypes at the ESL;ACM Transactions on Embedded Computing Systems;2022-06-22