Early SoC Security Validation by VP-based Static Information Flow Analysis

被引:0
|
作者
Hassan, Muhammad [1 ,2 ]
Herdt, Vladimir [2 ]
Le, Hoang M. [2 ]
Grosse, Daniel [1 ,2 ]
Drechsler, Rolf [1 ,2 ]
机构
[1] DFKI GmbH, Cyber Phys Syst, D-28359 Bremen, Germany
[2] Univ Bremen, Inst Comp Sci, D-28359 Bremen, Germany
来源
2017 IEEE/ACM INTERNATIONAL CONFERENCE ON COMPUTER-AIDED DESIGN (ICCAD) | 2017年
关键词
D O I
暂无
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Security is one of the most burning issues in embedded system design nowadays. The majority of strategies to secure embedded systems are being implemented in software. However, a potential hardware backdoor that allows unprivileged software access to confidential data will render even the perfectly secure software useless. As the underlying SoC cannot be patched after deployment, it is very critical to detect and correct SoC hardware security issues in the design phase. To prevent costly fixes in later stages, security validation should start as early as possible. In this paper, we propose a novel approach to SoC security validation at the system level using Virtual Prototypes (VP). At the heart of the approach is a scalable static information flow analysis that can detect potential security breaches such as data leakage and untrusted access; confidentiality and integrity issues, respectively. We demonstrate the applicability of the approach on real-world VPs.
引用
收藏
页码:400 / 407
页数:8
相关论文
共 50 条
  • [1] Security validation of VP-based SoCs using dynamic information flow tracking
    Goli, Mehran
    Hassan, Muhammad
    Grosse, Daniel
    Drechsler, Rolf
    IT-INFORMATION TECHNOLOGY, 2019, 61 (01): : 45 - 58
  • [2] VAST: Validation of VP-based Heterogeneous Systems against Availability Security Properties using Static Information Flow Tracking
    Coskun, Ece Nur Demirhan
    Hassan, Muhammad
    Goli, Mehran
    Drechsler, Rolf
    2023 24TH INTERNATIONAL SYMPOSIUM ON QUALITY ELECTRONIC DESIGN, ISQED, 2023, : 555 - 562
  • [3] Random early blocking routing in VP-based ATM networks
    Chung, SP
    Tsai, CM
    15TH INTERNATIONAL CONFERENCE ON INFORMATION NETWORKING, PROCEEDINGS, 2001, : 461 - 468
  • [4] Analysis of multicasting strategies for VP-Based ATM networks
    Lee, BH
    Shie, SF
    IEICE TRANSACTIONS ON COMMUNICATIONS, 2002, E85B (12) : 2851 - 2858
  • [5] VIP-VP: Early Validation of SoCs Information Flow Policies using SystemC-based Virtual Prototypes
    Goli, Mehran
    Drechsler, Rolf
    PROCEEDINGS OF THE 2021 FORUM ON SPECIFICATION & DESIGN LANGUAGES (FDL), 2021,
  • [6] A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
    Antoshina, E. Ju.
    Barakova, A. N.
    Nikitin, E. S.
    Chalyy, D. Ju.
    AUTOMATIC CONTROL AND COMPUTER SCIENCES, 2014, 48 (07) : 589 - 593
  • [7] Verification of a Practical Hardware Security Architecture Through Static Information Flow Analysis
    Ferraiuolo, Andrew
    Xu, Rui
    Zhang, Danfeng
    Myers, Andrew C.
    Suh, G. Edward
    OPERATING SYSTEMS REVIEW, 2017, 51 (02) : 555 - 568
  • [8] Verification of a Practical Hardware Security Architecture Through Static Information Flow Analysis
    Ferraiuolo, Andrew
    Xu, Rui
    Zhang, Danfeng
    Myers, Andrew C.
    Suh, G. Edward
    ACM SIGPLAN NOTICES, 2017, 52 (04) : 555 - 568
  • [9] Verification of a Practical Hardware Security Architecture Through Static Information Flow Analysis
    Ferraiuolo, Andrew
    Xu, Rui
    Zhang, Danfeng
    Myers, Andrew C.
    Suh, G. Edward
    TWENTY-SECOND INTERNATIONAL CONFERENCE ON ARCHITECTURAL SUPPORT FOR PROGRAMMING LANGUAGES AND OPERATING SYSTEMS (ASPLOS XXII), 2017, : 555 - 568
  • [10] Dynamic security labels and static information flow control
    Lantian Zheng
    Andrew C. Myers
    International Journal of Information Security, 2007, 6 : 67 - 84
12345