a practical split manufacturing framework for trojan
play

A Practical Split Manufacturing Framework for Trojan Prevention via - PowerPoint PPT Presentation

Aug 16, 2023 •25 likes •295 views

A Practical Split Manufacturing Framework for Trojan Prevention via Simultaneous Wire Lifting and Cell Insertion Meng Li 1 , Bei Yu 2 , Yibo Lin 1 , Xiaoqing Xu 1 , Wuxi Li 1 , David Z. Pan 1 1 Electrical & Computer Engineering, University of

  1. A Practical Split Manufacturing Framework for Trojan Prevention via Simultaneous Wire Lifting and Cell Insertion Meng Li 1 , Bei Yu 2 , Yibo Lin 1 , Xiaoqing Xu 1 , Wuxi Li 1 , David Z. Pan 1 1 Electrical & Computer Engineering, University of Texas at Austin 2 Computer Science & Engineering, The Chinese University of Hong Kong ASPDAC 2018 - Jan 22, 2017 - Jeju Island, Korea 1 / 20

  2. Motivation State-of-the-Art Framework Experiments Motivation: Hardware Trojan Trojans inserted by untrusted foundries threaten system security ◮ Malicious modifications to the original design ◮ Ultra lightweight but can completely ruin the system security mechanisms Inserted stealthily to prevent post-silicon testing ◮ Require strict conditions to trigger the Trojans primary primary outputs inputs … 2 / 20

  3. Motivation State-of-the-Art Framework Experiments Motivation: Hardware Trojan Trojans inserted by untrusted foundries threaten system security ◮ Malicious modifications to the original design ◮ Ultra lightweight but can completely ruin the system security mechanisms Inserted stealthily to prevent post-silicon testing ◮ Require strict conditions to trigger the Trojans primary primary Cells with rare circuit outputs inputs events are more vulner- … able to Trojan insertion Trigger Payload Trojan Ckt. 2 / 20

  4. Motivation State-of-the-Art Framework Experiments What is Split Manufacturing? Target at preventing Trojan insertion by untrusted foundries ◮ Front-end-of-line (FEOL): cells and wires in lower metal layers, untrusted foundries ◮ Back-end-of-line (BEOL): wires in higher metal layers, trusted foundries Wire connections in BEOL layers are hidden from the attackers ◮ Incur overhead for the wires in the BEOL layers Wire Design House Via BEOL FEOL BEOL Layers Trusted Foundry and Untrusted Foundry Assembler FEOL Assembled Chip Layers 3 / 20

  5. Motivation State-of-the-Art Framework Experiments Why Split Manufacturing Deters Trojan Insertion? Assume attackers have the original netlist and a full control of FEOL ◮ Determine logic signals used to trigger the Trojan based on the original netlist ◮ Determine the target locations to insert Trojans in the FEOL layers Critical nodes can still be protected under such a strong attack model Attacker’s Info 3 C Whether gate B or D in the FEOL layers 4 D implements gate 2 in 1 A the original netlist? 5 E 2 B Original Netlist FEOL C D A E B BEOL 4 / 20

  6. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Regard FEOL layers and the original netlist as graphs ◮ The FEOL graph must be a subgraph of the original netlist An attacker can identify the physical implementation by subgraph isomorphism relation Orig. Netlist: Subgraph: 5 5 4 2 4 2 Isomorphic Relation: 1 A 3 1 3 1 2 B 3 C FEOL: 4 D E 5 E D B C A 5 / 20

  7. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Different isomorphism relations lead to multiple possible physical implementations Previous security criterion: k -security ◮ For one cell in the original netlist, require k different possible implementations ◮ For the netlist, require each cell to be at least k secure Orig. Netlist: Subg1: 5 5 4 2 4 2 3 1 1 3 FEOL: 1 A E 2 B 3 C D B 4 D 5 E C A 6 / 20

  8. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Different isomorphism relations lead to multiple possible physical implementations Previous security criterion: k -security ◮ For one cell in the original netlist, require k different possible implementations ◮ For the netlist, require each cell to be at least k secure Orig. Netlist: Subg1: Subg2: 5 5 5 4 2 4 2 4 2 3 1 1 3 3 1 FEOL: 1 A 1 A E 2 B 2 B 3 C 3 C D B 4 D 4 D 5 E 5 E C A 6 / 20

  9. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Different isomorphism relations lead to multiple possible physical implementations Previous security criterion: k -security ◮ For one cell in the original netlist, require k different possible implementations ◮ For the netlist, require each cell to be at least k secure Orig. Netlist: Subg1: Subg2: Subg3: 5 5 5 5 4 2 4 2 4 2 2 4 3 1 1 3 3 1 1 3 FEOL: 1 A 1 A 1 A E 2 B 2 B 2 B 3 C 3 C 3 C D B 4 D 4 D 4 D 5 E 5 E 5 E C A 6 / 20

  10. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Different isomorphism relations lead to multiple possible physical implementations Previous security criterion: k -security ◮ For one cell in the original netlist, require k different possible implementations ◮ For the netlist, require each cell to be at least k secure Orig. Netlist: Subg1: Subg2: Subg3: Subg4: 5 5 5 5 5 4 2 4 2 4 2 2 4 2 4 3 1 1 3 3 1 1 3 3 1 FEOL: 1 A 1 A 1 A 1 A E 2 B 2 B 2 B 2 B 3 C 3 C 3 C 3 C D B 4 D 4 D 4 D 4 D 5 E 5 E 5 E 5 E C A 6 / 20

  11. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Different isomorphism relations lead to multiple possible physical implementations Previous security criterion: k -security ◮ For one cell in the original netlist, require k different possible implementations ◮ For the netlist, require each cell to be at least k secure Orig. Netlist: 5 4 2 3 1 Nodes 1, 2, 3, 4 are 2-secure. Node 5 is 1-secure. FEOL: The netlist is 1-secure. E D B C A 6 / 20

  12. Motivation State-of-the-Art Framework Experiments Previous Split Manufacturing Framework [Imeson+, Usenix’13] Greedy split manufacturing flow [Imeson+, Usenix’13] ◮ Start by lifting all wires to BEOL layers and add them back iteratively ◮ Greedily select wires with the maximized netlist security Poor scalability due to repetitive subgraph isomorphism checking Original: Starting Point: First Iter: Second Iter: Third Iter: Final FEOL: 1 2 1’ 2’ 1’ 2’ 1’ 2’ 1’ 2’ 1’ 2’ 3 4 3’ 4’ 3’ 4’ 3’ 4’ 3’ 4’ 3’ 4’ 5 6 5’ 6’ 5’ 6’ 5’ 6’ 5’ 6’ 5’ 6’ Sec. lvl = 2 Sec. lvl = 2 Sec. lvl = 2 Sec. lvl = 1 Sec. lvl = 2 … … … 1’ 2’ 1’ 2’ 1’ 2’ Selected Edge 3’ 4’ 3’ 4’ 3’ 4’ Trial Edge 5’ 6’ 5’ 6’ 5’ 6’ Sec. lvl = 1 Sec. lvl = 1 Sec. lvl = 1 7 / 20

  13. Motivation State-of-the-Art Framework Experiments Overview of Our Proposed Solution Besides scalability, [Imeson+, Usenix’13] cannot always achieve required security levels New solution: allowing the dummy node/wire insertion together with wire lifting ◮ Only allow inserting wires pointing to dummy nodes Orig. Netlist: FEOL: Orig. Netlist: FEOL: 5 E 5 E F 4 2 D B 4 2 D B 3 1 C A 3 1 C A However, still need to resolve two new issues ◮ How to define the security criterion since FEOL is not a subgraph of the original netlist ◮ How to enhance the scalability and allow concurrent node/wire insertion 8 / 20

  14. Motivation State-of-the-Art Framework Experiments Generalized Security Criterion Invariant relations between the FEOL layers and the original netlist Relation One Each node in the original netlist has exactly one actual implementation in FEOL For example, one of nodes B and D in FEOL must implement node 2 Orig. Netlist: FEOL: 5 E F 4 2 D B 3 1 C A 9 / 20

  15. Motivation State-of-the-Art Framework Experiments Generalized Security Criterion Invariant relations between the FEOL layers and the original netlist Relation Two If a node in FEOL is the actual physical implementation of a certain node in the original netlist, none of edges pointing to the node can be dummy Recall inserting dummy wires pointing to the actual physical implementation is not allowed For example, if F is the implementation of 5, then ( D , F ) and ( B , F ) are not dummy Orig. Netlist: FEOL: 5 E F 4 2 D B 3 1 C A 9 / 20

  16. Motivation State-of-the-Art Framework Experiments Generalized Security Criterion Now, define new security criterion to accommodate node/wire insertion To identify the possible implementation, build Subgraph Isomorphism Relation between ◮ Spanning subgraph of the original netlist and induced subgraph of FEOL k -security can be defined based on the subgraph isomorphism relation Orig. Netlist: Spanning Subg: 5 5 4 2 4 2 Isomorphic Relation: 1 A 3 1 3 1 2 B 3 C FEOL: Induced Subg: 4 D E F E 5 E F D B D B C A C A 10 / 20

  17. Motivation State-of-the-Art Framework Experiments Sufficient Condition for Security Criterion New security criterion does not help with scalability ◮ Graph isomorphism checking is still required to determine security Sufficient condition based on k -isomorphism [Cheng+, SIGMOD’10]: ◮ A graph composed of k disjoint isomorphic subgraphs is k -isomorphic ◮ A k -isomorphic FEOL graph guarantees k security Avoid isomorphism checking by achieving the sufficient condition Orig. Netlist: FEOL Layers: If A is the candidate B 3 C node of 1, then D 1 5 o 1 i 1 o 1 i 1 A must be the candidate E o 2 4 o 2 D node of 1 as well. 2 i 2 i 2 F 11 / 20

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Trojan Horse Zion Maxwell and Kaylie Davis The Trojan horse The Greeks had a war against the

Trojan Horse Zion Maxwell and Kaylie Davis The Trojan horse The Greeks had a war against the

Trojan Horse Zion Maxwell and Kaylie Davis The Trojan horse The Greeks had a war against the Trojans for ten years. The Torjan horse So they build the Trojan horse the Greeks Gene The Trojan horse After they built it they put a

392 views • 5 slides
Atacking Split Manufacturing from a Deep Learning Perspective Haocheng Li 1 , Satwik Patnaik 2 ,

Atacking Split Manufacturing from a Deep Learning Perspective Haocheng Li 1 , Satwik Patnaik 2 ,

Atacking Split Manufacturing from a Deep Learning Perspective Haocheng Li 1 , Satwik Patnaik 2 , Abhrajit Sengupta 2 , Haoyu Yang 1 , Johann Knechtel 3 , Bei Yu 1 , Evangeline F. Y. Young 1 , Ozgur Sinanoglu 3 1 The Chinese University of Hong Kong

329 views • 15 slides
Securing Computer Hardware Using 3D Integrated Circuit (IC) Technology and Split Manufacturing

Securing Computer Hardware Using 3D Integrated Circuit (IC) Technology and Split Manufacturing

Introduction Attack Model k -Security Layout Randomization Summary Securing Computer Hardware Using 3D Integrated Circuit (IC) Technology and Split Manufacturing for Obfuscation Frank Imeson ECE, University of Waterloo USENIX Security 13

540 views • 43 slides
The Good Manufacturing Practice (GMP) Clearance Framework an overview Rheannon McNeil

The Good Manufacturing Practice (GMP) Clearance Framework an overview Rheannon McNeil

The Good Manufacturing Practice (GMP) Clearance Framework an overview Rheannon McNeil Assistant Director, GMP Clearance Section Manufacturing Quality Branch Therapeutic Goods Administration 12 June 2019 Welcome: The GMP Clearance Framework

300 views • 27 slides
ARC Framework Co-Developers The ARC Framework A Practical Toolkit For Parents ARC Rick Simon,

ARC Framework Co-Developers The ARC Framework A Practical Toolkit For Parents ARC Rick Simon,

4/18/2013 1 ARC Framework Co-Developers The ARC Framework A Practical Toolkit For Parents ARC Rick Simon, M.Ed., LCPC Kristine Kinniburgh, LICSW Margaret Blaustein, PHD Clinical Therapist Director of Training & Education Trauma Center

598 views • 47 slides
Designed for SMEs Bob Trojan and Adalberto Elias NatLaw September 16 th & 17 th , 2019 1

Designed for SMEs Bob Trojan and Adalberto Elias NatLaw September 16 th & 17 th , 2019 1

A Workshop Program Designed for SMEs Bob Trojan and Adalberto Elias NatLaw September 16 th & 17 th , 2019 1 Situational Perspective: Background/Current State of the Secured Transactions Order (STO) Framework and the Collateral Registry

1.16k views • 88 slides
Trojan Horses Seemingly useful program that contains code that does harmful things When

Trojan Horses Seemingly useful program that contains code that does harmful things When

Trojan Horses Seemingly useful program that contains code that does harmful things When you run it, the Greeks creep out and slaughter your system Lecture 12 Page 1 CS 236 Online Basic Trojan Horses A program you pick up somewhere

581 views • 23 slides
SPL SPLIT IT CA CAST ST Installation of Split Cast Kit Split Cast Kit Rf QM 2000 2 screws

SPL SPLIT IT CA CAST ST Installation of Split Cast Kit Split Cast Kit Rf QM 2000 2 screws

SPL SPLIT IT CA CAST ST Installation of Split Cast Kit Split Cast Kit Rf QM 2000 2 screws , 2 magnets 2 split cast plates and 2 retention disks 1 : remove the nut of the screw 2 : Fixe the screws on articulator 3 : Fixe the magnets on

205 views • 9 slides
Design and Practical Guideline to a CORBA-based-Communication Framework DWARF : Distributed

Design and Practical Guideline to a CORBA-based-Communication Framework DWARF : Distributed

Design and Practical Guideline to a CORBA-based-Communication Framework DWARF : Distributed Wearable Augmented Reality Framework Studienarbeit Lothar Richter Chair for Applied Software Engineering Summary Development of a short and easy

430 views • 30 slides
Enabling Practical SDN Security Applications with OFX (The O pen F low e X tension Framework)

Enabling Practical SDN Security Applications with OFX (The O pen F low e X tension Framework)

Enabling Practical SDN Security Applications with OFX (The O pen F low e X tension Framework) John Sonchack, Adam J. Aviv, Eric Keller, and Jonathan M. Smith Outline Introduction Overview of OFX Using OFX Benchmarks 2 Basic Networking:

604 views • 35 slides
HOST Hardware Trojans III ECE 525 Seminal Trojan Detection Method D. Agrawal, S. Baktir, D.

HOST Hardware Trojans III ECE 525 Seminal Trojan Detection Method D. Agrawal, S. Baktir, D.

HOST Hardware Trojans III ECE 525 Seminal Trojan Detection Method D. Agrawal, S. Baktir, D. Karakoyunlu, P. Rohatgi, B. Sunar, Trojan Detection using IC Fingerprinting, Symposium on Security and Privacy, 2007, pp. 296 - 310 They use noise

543 views • 37 slides
PRODUCT DECOMPOSITION Ante Rozga, University of Split, Faculty of Economics/Split - Cvite

PRODUCT DECOMPOSITION Ante Rozga, University of Split, Faculty of Economics/Split - Cvite

NEW APPROACH TO GROSS DOMESTIC PRODUCT DECOMPOSITION Ante Rozga, University of Split, Faculty of Economics/Split - Cvite Fiskovia 5, 21 000 Split; CROATIA e-mail: ante.rozga@efst.hr Elza Jurun, University of Split, Faculty of

595 views • 38 slides
Disproportionate Costs in the EC Water Framework Directive The Concept and its Practical

Disproportionate Costs in the EC Water Framework Directive The Concept and its Practical

Disproportionate Costs in the EC Water Framework Directive The Concept and its Practical Implementation By Benjamin Grlach 1 and Britta Pielen 2 Paper presented at the envecon 2007 Applied Environmental Economics Conference London, 23 March

414 views • 17 slides
ADDAX METERING SPLIT SOLUTION 24+ years delivering solutions beyond your expectations add new

ADDAX METERING SPLIT SOLUTION 24+ years delivering solutions beyond your expectations add new

ADDAX METERING SPLIT SOLUTION 24+ years delivering solutions beyond your expectations add new tech to your business! ADD GRUP OVERVIEW High-tech company with 25 years of success worldwide Manufacturing facilities with up-to-date

293 views • 10 slides
DEEP LEARNING FRAMEWORK FOR CYBER-ENABLED MANUFACTURING ADI DITY TYA A BALU SA SAMBIT IT

DEEP LEARNING FRAMEWORK FOR CYBER-ENABLED MANUFACTURING ADI DITY TYA A BALU SA SAMBIT IT

GPU-ACCELERATED DEEP LEARNING FRAMEWORK FOR CYBER-ENABLED MANUFACTURING ADI DITY TYA A BALU SA SAMBIT IT GHADAI AI SO SOUMIK K SA SARKA KAR ADARS RSH H KR KRISH SHNAMUR AMURTHY THY Outline Volumetric Deep Learning based

325 views • 32 slides
Catch Me If You Can: A Practical Framework to Evade Censorship in Information-Centric Networks

Catch Me If You Can: A Practical Framework to Evade Censorship in Information-Centric Networks

Catch Me If You Can: A Practical Framework to Evade Censorship in Information-Centric Networks Reza Tourani, Satyajayant (Jay) Misra, Joerg Kliewer, Scott Ortegel, Travis Mick Computer Science Department Department of Electrical &

940 views • 47 slides
A look ahead: Echelon Talk contents [13 slides] 1. The Echelon system [4]. 2. The challenge of

A look ahead: Echelon Talk contents [13 slides] 1. The Echelon system [4]. 2. The challenge of

A look ahead: Echelon Talk contents [13 slides] 1. The Echelon system [4]. 2. The challenge of power consumption in Echelon [9]. 2 I. Introduction 3 Companies involved in the project 4 System sketch 5 Thread count estimation 2010: 4640

334 views • 17 slides
Earnings Summary First Quarter 2017 Conference Call Wednesday, April 26, 2017 9:00 a.m. ET

Earnings Summary First Quarter 2017 Conference Call Wednesday, April 26, 2017 9:00 a.m. ET

Earnings Summary First Quarter 2017 Conference Call Wednesday, April 26, 2017 9:00 a.m. ET U.S. Participants: (888) 6798033 International Participants: (617) 2134846 Passcode: 54960851# Webcast: ir.huntsman.com Forward Looking

339 views • 17 slides
Wire Shaping is Practical Hongbo Zhang and Martin D.F. Wong, U of Illinois Kai-Yuan (Kevin) Chao,

Wire Shaping is Practical Hongbo Zhang and Martin D.F. Wong, U of Illinois Kai-Yuan (Kevin) Chao,

Wire Shaping is Practical Hongbo Zhang and Martin D.F. Wong, U of Illinois Kai-Yuan (Kevin) Chao, Intel Liang Deng, Broadcom ISPD-09 Overview Practical wire shaping methodology for power minimization Manufacturing for design (MFD)

420 views • 26 slides
First Quarter 2020 Financial Results Michael H. McGarry , Chairman and Chief Executive Officer

First Quarter 2020 Financial Results Michael H. McGarry , Chairman and Chief Executive Officer

First Quarter 2020 Financial Results Michael H. McGarry , Chairman and Chief Executive Officer Vincent J. Morales, Senior Vice President and Chief Financial Officer John Bruno, Director, Investor Relations Information current as of April 27,

353 views • 14 slides
STRATASYS Q4 2017 FINANCIAL RESULTS CONFERENCE CALL February 28 th , 2018 Q4 2017 Conference

STRATASYS Q4 2017 FINANCIAL RESULTS CONFERENCE CALL February 28 th , 2018 Q4 2017 Conference

STRATASYS Q4 2017 FINANCIAL RESULTS CONFERENCE CALL February 28 th , 2018 Q4 2017 Conference and Live Dial-in webcast details Speakers Information Primary Dial-in: Ilan Levin 866-394-5776 CEO International Dial- Lilach Payorski in:

403 views • 19 slides
LITTLE VALUE CREATION, ARTICULATION AND PROPAGATING FORCES : A HYPOTHESIS FOR THE MEXICAN

LITTLE VALUE CREATION, ARTICULATION AND PROPAGATING FORCES : A HYPOTHESIS FOR THE MEXICAN

LITTLE VALUE CREATION, ARTICULATION AND PROPAGATING FORCES : A HYPOTHESIS FOR THE MEXICAN MANUFACTURING SECTOR Authors: Santiago Roca Luis Simabuko Escuela Escuela de Administracin e Administracin de Negocios de Negocios para para

654 views • 40 slides
Does aid reduce inequality? Evidence for Latin America David Castells-Quintana AQR-IREA.

Does aid reduce inequality? Evidence for Latin America David Castells-Quintana AQR-IREA.

Does aid reduce inequality? Evidence for Latin America David Castells-Quintana AQR-IREA. Universidad de Barcelona, Jos Mara Larr Universidad CEU San Pablo larram@ceu.es MOTIVATION & FRAMEWORK POVERTY within - + income between

533 views • 20 slides
Linear, Binary SVM Classifiers COMPSCI 371D Machine Learning COMPSCI 371D Machine

Linear, Binary SVM Classifiers COMPSCI 371D Machine Learning COMPSCI 371D Machine

Linear, Binary SVM Classifiers COMPSCI 371D Machine Learning COMPSCI 371D Machine Learning Linear, Binary SVM Classifiers 1 / 17 Outline 1 What Linear, Binary SVM Classifiers Do 2 Margin 3 Loss and Regularized Risk 4 Training an SVM is

510 views • 17 slides

More recommend