secure logic styles
play

Secure Logic Styles ECRYPT II summer school on Design and Security - PowerPoint PPT Presentation

Apr 07, 2023 •146 likes •387 views

Embedded Security Group Secure Logic Styles ECRYPT II summer school on Design and Security of Cryptographic Algorithms and Devices 1. June 2011 Amir Moradi Embedded Security Group Agenda Power Consumption Characteristics of CMOS Circuits

  1. Embedded Security Group Secure Logic Styles ECRYPT II summer school on Design and Security of Cryptographic Algorithms and Devices 1. June 2011 Amir Moradi

  2. Embedded Security Group Agenda  Power Consumption Characteristics of CMOS Circuits – Glitches  Solutions in Hardware – Logic Styles – Dual-Rail Pre-charge concept – Examples – Problems – Overheads – Gains 2 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  3. Embedded Security Group Power Consumption Characteristics of CMOS Circuits  The majority of today’s hardware are built using CMOS technology – Complementary Metal Oxide Semiconductor – It is immune in presence of noise – It has very low static power consumption • The main power consumption comes from dynamic part – The point that we get the “information leakage” – Let’s see the details of a CMOS gate to understand its behavior when the inputs change 3 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  4. Embedded Security Group Power Consumption of CMOS Circuits (cont’d)  A CMOS gate is built using two networks – Pull-up and pull-down – Pull-up part is made by PMOS transistors • Which can nicely pass HIGH (logical “1”) – Pull-down part by the NMOS transistors • Which can nicely pass LOW (logical “0”) – The networks should be made in a way that at each time instance when the inputs are stable, only one network is active. • Then, the static power consumption will be very low – An example: a CMOS NAND gate 4 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  5. Embedded Security Group Power Consumption of CMOS Circuits (cont’d)  Static power consumption – The transistors (NMOS and PMOS) are not perfectly blocking and there is a leakage current flows – This issue becomes more and more relevant, the smaller the used technology is – Pull-up and pull-down networks have different leakage currents • Data-dependent static power  Dynamic power consumption – Short circuit current: When an input of the gates switches, the pull- down and pull-down networks are both conductive for a short period of time • Data-dependent dynamic power if the output changes – Charging current: Whenever the output switches, the output capacitance needs to be charged or discharged; – charging leads to a high current • Data-dependent dynamic power if the output changes from LOW to HIGH [Physical-Security.org] 5 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  6. Embedded Security Group Power Consumption of CMOS Circuits  A CMOS inverter:  There are many other parameters which affect the power of a CMOS gate, but we ignore them here  Generally for PA attacks, we take the most significant part into account – In short, the power consumption depends on the processed data 6 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  7. Embedded Security Group Glitches  How about a larger circuit?  The power consumption of combinational circuits depends strongly on some other points – One is glitches – “Glitches in CMOS circuits are data dependent and have a strong impact on the dynamic power consumption” [DPABook] 7 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  8. Embedded Security Group Solutions in Hardware  We need a scheme to prevent glitches – a couple of methods in VLSI design to make glitch- free circuits – not enough to prevent data-dependency • e.g., number of toggles still will be different for different input changes  We need a scheme to prevent glitches and make the number of toggles fixed independent of input changes – Dual-Rail Pre-charge (DRP) logic 8 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  9. Embedded Security Group Dual-Rail Pre-charge (DRP) Logic  Each value (0/1) is presented by two lines  There are two phases: pre-charge/evaluation  Both lines go LOW in pre-charge phase  Only one line goes HIGH in evaluation phase a 1 a 0 pre-charge evaluation pre-charge evaluation To have constant power consumption, the  There will be no glitch capacitance loads of complementary signals must  The number of toggles will be fixed be the same 9 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  10. Embedded Security Group DRP Logic (first example, SABL)  Sense Amplifier Based Logic (SABL) [TAV02]  Constant power consumption for each gate  Independent Time-Of-Evaluation (TOE) – A gate evaluates when all complimentary signals are valid  All gates are connected to CLK and prechared all together  Full-custom design tools should be used  Overheads – ~double area – half speed – much more energy consumption 10 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  11. Embedded Security Group SABL (cont’d)  AND/NAND n-type SABL gate:  CLK=0, pre-charge phase – All signals go LOW  CLK-> 1, start of evaluation phase  q or qbar signal goes LOW when both complementary a and b signals are valid  Requirements – The same capacitance for every comp. internal signal – The same resistance for every comp. path  Hard to achieve… 11 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  12. Embedded Security Group DRP Logic (second example, WDDL)  Wave Dynamic Differential Logic [TV04]  The same idea as SABL but using standard CMOS library  AND/NAND WDDL gate: – much simpler than SABL – much smaller than SABL – less resistant against DPA attacks  WDDL flip-flop: 12 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  13. Embedded Security Group WDDL (cont’d)  Why less resistance than SABL? – Complementary capacitance loads cannot be balanced – Memory effect: charges stored in internal nodes of the gates are data-dependent – Time-Of-Evaluation is also data-dependent – Also known as early propagation effect • A gate evaluates the output before all complementary signal arrived – For example, one AND gate may make the output 0 once seeing that one input is 0 13 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  14. Embedded Security Group Current Mode Logic  Instead of the voltage levels in CMOS, the current passing through the gate defines the logical value of the gate output  In theory sum of the currents in a complementary circuit is data-independent  Static energy consumption was a problem, solved in DyCML (Dynamic Current Mode Logic) [AE01]  Like SABL needs full-custom design flow  Capacitive loads also affect  Dedicated placement and routing for complementary signals/transistors should be used 14 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  15. Embedded Security Group Randomization in Gate Level  Each internal signal is masked by a mask bit  Some schemes used one mask bit per internal signal – Very high complexity – Very high area and power overhead  Others used a single mask bit for whole of the circuit – Random Switching Logic  In combination with the DRP logic, they have made – Dual-rail Random Switching Logic – Masked Dual-rail Precharge Logic – … 15 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  16. Embedded Security Group RSL  Random Switching Logic [SSI04]  A NAND(NOR) RSL gate:  r is a random bit changing every CLK cycle  en signal commands the gate to evaluate  no duality is used – Number of toggles is data-dependent • Random bit is used to change this dependency  Glitches are prevented if the timing of en signal for each gate at each depth level is carefully observed 16 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  17. Embedded Security Group DRSL  Dual-rail Random Switching Logic [CZ06]  The dual-rail version of RSL  AND/NAND DRSL gate:  provides a dedicated circuit to handle en signal of each gate  prevents early propagation in evaluation phase – but leads to information leakage in precharge phase  can be implemented by semi-custom design tools 17 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  18. Embedded Security Group MDPL  Masked Dual-rail Precharge Logic [PM05]  can be seen as masked version of WDDL  can be implemented by standard CMOS library  Main block is a majority gate, the AND/NAND gate:  Mask signal m changes every clock cycle and is shared between all gates  suffers from early propagation effect – Practical investigation showed strong leakage 18 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

  19. Embedded Security Group iMDPL  Improved version of MDPL [PKZM07] – to avoid the early propagation effect  An Evaluation-Precharge Detection Unit (EPDU) added to each MDPL gate:  Very high area overhead  Practical investigations showed – decreased leakage – dependency of the resistance on the imbalanced complimentary wires of the mask – still can be attacked 19 ECRYPT II summer school | Albena | 1. June 2011 | Secure Logic Styles Amir Moradi

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Styles and Themes By T oma Vajngerl @CollaboraOffjce www.CollaboraOffjce.com Styles Styles

Styles and Themes By T oma Vajngerl @CollaboraOffjce www.CollaboraOffjce.com Styles Styles

Styles and Themes By T oma Vajngerl @CollaboraOffjce www.CollaboraOffjce.com Styles Styles Preview Added style manager for creating style previews Currently only for Character and Paragraph styles Used it in Styles &

411 views • 18 slides
UNDERSTANDING LEADERSHIP STYLES Leadership on Demand AGENDA What is Leadership? What are

UNDERSTANDING LEADERSHIP STYLES Leadership on Demand AGENDA What is Leadership? What are

UNDERSTANDING LEADERSHIP STYLES Leadership on Demand AGENDA What is Leadership? What are Leadership Styles? Why think about leadership styles? Logic Problem Using True Colors TAKE OUT A PIECE OF PAPER 4:

375 views • 18 slides
Viable Paths Towards Graphene Circuits: Implementation Styles and Logic Synthesis Tools Sandeep

Viable Paths Towards Graphene Circuits: Implementation Styles and Logic Synthesis Tools Sandeep

Viable Paths Towards Graphene Circuits: Implementation Styles and Logic Synthesis Tools Sandeep Miryala, Valerio Tenace, Andrea Calimera, Enrico Macii, Massimo Poncino DAUIN Dipartimento di Automatica e Informatica enrico.macii@polito.it 1

829 views • 28 slides
Know about Parenting Styles: What is yours? www.iraparenting.com Parenting Styles Introduction :

Know about Parenting Styles: What is yours? www.iraparenting.com Parenting Styles Introduction :

Know about Parenting Styles: What is yours? www.iraparenting.com Parenting Styles Introduction : www.iraparenting.com Intro Parenting style develops over time, depending on the practical reality and natural personality of the parent.

436 views • 17 slides
How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

DIMACS Workshop On Secure Routing March 10, 2010 How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing Protocols? $ $ Sharon Goldberg Microsoft Research & Boston University y Michael Schapira

701 views • 54 slides
Logic Synthesis Page 1 Introduction to Digital VLSI Logic Synthesis Course Outline Design

Logic Synthesis Page 1 Introduction to Digital VLSI Logic Synthesis Course Outline Design

Introduction to Digital VLSI Logic Synthesis Logic Synthesis Page 1 Introduction to Digital VLSI Logic Synthesis Course Outline Design Compiler Overview Some Words about Physical Compiler Coding Styles Partitioning

986 views • 56 slides
Parenting styles of Parenting styles of multinational corporations multinational corporations

Parenting styles of Parenting styles of multinational corporations multinational corporations

40 th Annual EIAB Conference, Uppsala, December 11-13 , 2014 Parenting styles of Parenting styles of multinational corporations multinational corporations Igor Gurkov National Research University Higher School of Economics gurkov@hse.ru

254 views • 8 slides
Banking software architecture 2 Architectural Styles 1 WebLogic Network Gatekeeper's software

Banking software architecture 2 Architectural Styles 1 WebLogic Network Gatekeeper's software

Architectural Styles Ana Moreira Fernando Brito e Abreu 1 Architectural Styles Banking software architecture 2 Architectural Styles 1 WebLogic Network Gatekeeper's software architecture 3 Architectural Styles GNOME Desktop Accessibility

519 views • 50 slides
Click to edit Master text styles Click to edit Master text styles Second Level

Click to edit Master text styles Click to edit Master text styles Second Level

Click to edit Master text styles Click to edit Master text styles Second Level Third Level Creating Knowledge Graphs with Trust Brian Ulicny @bulicny Director, Data Innovation Lab Thomson Reuters METHOD 2015: 4 th Intl

311 views • 17 slides
CS 5220: Locality and parallelism in simulations II David Bindel 2017-09-14 1 Basic styles of

CS 5220: Locality and parallelism in simulations II David Bindel 2017-09-14 1 Basic styles of

CS 5220: Locality and parallelism in simulations II David Bindel 2017-09-14 1 Basic styles of simulation Discrete event systems (continuous or discrete time) Game of life, logic-level circuit simulation Network simulation

431 views • 28 slides
Programming Styles and Objects Fermilab - TARGET 2018 Week 3 Programming styles Imperative

Programming Styles and Objects Fermilab - TARGET 2018 Week 3 Programming styles Imperative

Programming Styles and Objects Fermilab - TARGET 2018 Week 3 Programming styles Imperative programming - Procedural programming - Object oriented programming Declarative programming - Database languages (Structured Query Language) -

541 views • 11 slides
Markov Logic Markov Logic Probability First-Order Logic Propositional Logic Markov Logic

Markov Logic Markov Logic Probability First-Order Logic Propositional Logic Markov Logic

Putting the Pieces Together Markov Logic Markov Logic Probability First-Order Logic Propositional Logic Markov Logic Definition A Markov Logic Network (MLN) is a set of A logical KB is a set of hard constraints pairs (F, w) where on

350 views • 6 slides
Chapter 13 Interaction Styles Interaction Styles Command Entry Menus and Navigation

Chapter 13 Interaction Styles Interaction Styles Command Entry Menus and Navigation

Chapter 13 Interaction Styles Interaction Styles Command Entry Menus and Navigation Form-fills and Spreadsheets Natural Language Dialogue Direct Manipulation Cognitive Issues in Direct Manipulation Interaction

235 views • 8 slides
Using Seaborn Styles DATA VIS UALIZ ATION W ITH S EABORN Chris Moftt Instructor Setting

Using Seaborn Styles DATA VIS UALIZ ATION W ITH S EABORN Chris Moftt Instructor Setting

Using Seaborn Styles DATA VIS UALIZ ATION W ITH S EABORN Chris Moftt Instructor Setting Styles Seaborn has default congurations that can be applied with sns.set() These styles can override matplotlib and pandas plots as well

621 views • 17 slides
Cascading Style Sheets Overview of Cascading Style Sheets (CSS) See what is possible with CSS:

Cascading Style Sheets Overview of Cascading Style Sheets (CSS) See what is possible with CSS:

Cascading Style Sheets Overview of Cascading Style Sheets (CSS) See what is possible with CSS: Visit http://www.csszengarden.com 2 Types of Cascading Style Sheets Inline Styles Embedded Styles External Styles Imported Styles 3

389 views • 34 slides
1 Architectural styles: examples Dataflow: batch, pipe-and-filter Call-and-return Independent

1 Architectural styles: examples Dataflow: batch, pipe-and-filter Call-and-return Independent

Software Architecture Bertrand Meyer ETH Zurich March-May 2009 ETH Zurich, March-May 2009 Lecture 13: Architectural styles (partly after material by Peter Mller) 1 Software architecture styles Work by Mary Shaw and David Garlan at

470 views • 12 slides
Lifestyle Changes for Glaucoma Patients Yvonne Ou, MD Associate Professor of Ophthalmology

Lifestyle Changes for Glaucoma Patients Yvonne Ou, MD Associate Professor of Ophthalmology

Lifestyle Changes for Glaucoma Patients Yvonne Ou, MD Associate Professor of Ophthalmology Co-Director, Glaucoma Service Vice Chair for Postgraduate Education Department of Ophthalmology, UCSF Disclosures: None Doctor, what else can

675 views • 20 slides
RAILS INDUSTRIAL DEVELOPMENT TOOLBOX WEDA Fall Conference September 28, 2018 Jason Culotta

RAILS INDUSTRIAL DEVELOPMENT TOOLBOX WEDA Fall Conference September 28, 2018 Jason Culotta

RAILS INDUSTRIAL DEVELOPMENT TOOLBOX WEDA Fall Conference September 28, 2018 Jason Culotta Director, Industrial Development PROGRESSIVE RAIL INCORPORATED Founded in Lakeville, MN in September 1996; privately held Our key focus is

196 views • 18 slides
Conjectures Resolved and Unresolved from Rigidity Theory Jack Graver, Syracuse University SIAM

Conjectures Resolved and Unresolved from Rigidity Theory Jack Graver, Syracuse University SIAM

Conjectures Resolved and Unresolved from Rigidity Theory Jack Graver, Syracuse University SIAM conference on DISCRETE MATHEMATICS June 18-21, Dalhousie University Conjecture of Euler (1862): A plate and hinge framework that forms a closed

904 views • 16 slides
Muon Collider Magnets Magnet System Department, July 25, 2010 Fermilab/TD 1. Helical Solenoid

Muon Collider Magnets Magnet System Department, July 25, 2010 Fermilab/TD 1. Helical Solenoid

Muon Collider Magnets Magnet System Department, July 25, 2010 Fermilab/TD 1. Helical Solenoid (HS) Model 2 & 3 2. Helical Solenoid Cooling Section 3. Muon Collider Dipoles & Quadrupoles 4. HTS Helical Solenoid Model 5. R&D towards

196 views • 9 slides
SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna

SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna

SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna Ors Yal cn Istanbul Technical University Department of Electronics and Communication Engineering Introduction A side-channel analysis attack

1.81k views • 99 slides
Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography

Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography

Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography Until 1970s: Design crypto algorithm secure against one attack Find attack C Find attack B Crypto Crypto algorithm A algorithm B secure against

631 views • 51 slides
Tools and Techniques for Floating-Point Analysis Ignacio Laguna Jan 7, 2020 @ LLNL Modified

Tools and Techniques for Floating-Point Analysis Ignacio Laguna Jan 7, 2020 @ LLNL Modified

Tools and Techniques for Floating-Point Analysis Ignacio Laguna Jan 7, 2020 @ LLNL Modified version of: IDEAS Webinar Best Practices for HPC Software Developers Webinar Series October 16, 2019 This work was performed under the auspices of

928 views • 47 slides
Development and Pixel2018 Performance of Phase-I Taipei, Taiwan Pixel DAQ in 2018 Atanu Modak,

Development and Pixel2018 Performance of Phase-I Taipei, Taiwan Pixel DAQ in 2018 Atanu Modak,

Development and Pixel2018 Performance of Phase-I Taipei, Taiwan Pixel DAQ in 2018 Atanu Modak, Kansas State University (USA) On behalf of the CMS Collaboration 1 Outline Pixel Detector DAQ System Pixel Online Software

408 views • 19 slides

More recommend