Towards Scalable SoC Security Validation Sujit Kumar Muduli Indian - PowerPoint PPT Presentation

Oct 07, 2023 •138 likes •176 views

Towards Scalable SoC Security Validation Sujit Kumar Muduli Indian Institute of Technology, Kanpur Objective Proving confidentiality and integrity show execution traces are indistinguishable to untrusted entity Instance 1 Instance 2 AES

Towards Scalable SoC Security Validation Sujit Kumar Muduli Indian Institute of Technology, Kanpur
Objective Proving confidentiality and integrity show execution traces are indistinguishable to untrusted entity Instance 1 Instance 2 AES Engine AES Engine ROM ROM 𝑫𝑳𝒇𝒛 𝟑 𝑫𝑳𝒇𝒛 𝟐 RAM RAM Host Host 𝑱 𝑱 MMU MMU Interface Interface 𝑇𝑗𝑛 (𝐽, 𝐷𝐿𝑓𝑧 6 ) 𝒔 = ( 𝑏 ... 𝝂𝑫 𝝂𝑫 Access Access control control ≠ "#$ % ... 𝑇𝑗𝑛 (𝐽, 𝐷𝐿𝑓𝑧 8 ) 𝒔 = ( 𝑐 (Not secure) Indistinguishability Test Goal : automated technique for finding 2-safety hyperproperty violations
Challenges System Security 1. Specifying properties for end-to-end security. Model Specification 2. Specification and Model must capture adversarial effects. Instrumented 3. Scalability issue in verification process. RTL Test input Simulation Engine Whitebox Symbolic simulation • Fuzzing • Verilog simulation Coverage info Trace Analyzer security violation A semi-formal technique to find 2-safety violations

Download Presentation

Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Scalable Data Analytics Pipeline for Real-Time Attack Detection; Design, Validation, and

Scalable Data Analytics Pipeline for Real-Time Attack Detection; Design, Validation, and Deployment in a Honeypot Environment Eric Badger Masters Student Computer Engineering 1 Overview Introduction/Motivation Challenges

508 views • 30 slides

Scalable Data Analytics Pipeline for Validation of Real-Time Attack Detection Eric Badger , Phuong

Scalable Data Analytics Pipeline for Validation of Real-Time Attack Detection Eric Badger , Phuong Cao, Alex Withers, Adam Slagell, Zbigniew Kalbarczyk, Ravi Iyer University of Illinois Urbana-Champaign 1 Overview Introduction/Motivation

283 views • 24 slides

Scalable Translation Validation of Unverified Legacy OS Code Amer Tahat, Sarang Joshi, Pronoy

Renee 1.0 Scalable Translation Validation of Unverified Legacy OS Code Amer Tahat, Sarang Joshi, Pronoy Gawsamy, Binoy Ravindran Presenter: Amer Tahat System Software Research Group-SSRG Department of Electrical and Computer Engineering

807 views • 33 slides

Scalable and Cost-Effective Model-Based Software Verification and Testing University of

Scalable and Cost-Effective Model-Based Software Verification and Testing University of Luxembourg Interdisciplinary Centre for Security, Reliability and Trust Software Verification and Validation Lab (www.svv.lu) May 17th, 2013 University of

1.03k views • 72 slides

Securing the connected world Flexible and scalable embedded security IP Pieter Willems

Securing the connected world Flexible and scalable embedded security IP Pieter Willems pieter.willems@silexinsight.com V2.0 2019 Overview Silex Insight Introduction Embedded security markets and applications Security

590 views • 15 slides

A Scalable Approach to Attack Graph Generation By Ou, Boyer, McQueen Presented By: Philip Koshy

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA A Scalable Approach to Attack Graph Generation By Ou, Boyer,

591 views • 33 slides

Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values

Form Validation 1 CS380 What is form validation? 2 validation: ensuring that form's values are correct some types of validation: preventing blank values (email address) ensuring the type of values integer, real number,

284 views • 24 slides

Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far

Data Mining II Model Validation Heiko Paulheim Why Model Validation? We have seen so far Various metrics (e.g., accuracy, F-measure, RMSE, ) Evaluation protocol setups Split Validation Cross Validation Special

1.04k views • 55 slides

Validation of a Security Metamodel for Development of Cloud Applications Marcos Arjona - Carolina

Validation of a Security Metamodel for Development of Cloud Applications Marcos Arjona - Carolina Dania - Marina Egea - Antonio Ma na 14th International Workshop on OCL and Textual Modeling Applications and Case Studies (OCL 2014) September

462 views • 19 slides

Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM

Chapter 5 Analysis: Four Level for Validation Vis/Visual Analytics, Chap 5 Validation 1 CGGM Lab., CS Dept., NCTU Jung Hong Chuang Contents Why Validate? Validation Approaches Domain Why is Validation Abstraction

724 views • 47 slides

Caradoc: a Pragmatic Approach to PDF Parsing and Validation IEEE Security & Privacy LangSec

Caradoc: a Pragmatic Approach to PDF Parsing and Validation IEEE Security & Privacy LangSec Workshop 2016 Guillaume Endignoux Olivier Levillain Jean-Yves Migeon cole Polytechnique, France EPFL, Switzerland ANSSI, France Thursday 26 th

842 views • 35 slides

The Userland Exploits of Pangu 8 @PanguTeam Outline Introduction New Security

The Userland Exploits of Pangu 8 @PanguTeam Outline Introduction New Security Enhancements in iOS 8 Pangu 8 Overview Bypass Team ID Validation by Teasing the Trust-Cache Bypass Code Signing Validation by Segment Overlapping

821 views • 59 slides

An approach to Separation of Duties validation for MILS security configurations Semen Kort,

An approach to Separation of Duties validation for MILS security configurations Semen Kort, Dmitry Kulagin, Ekaterina Rudina Future Technologies Kaspersky Lab The objectives Discover the Describe how the Describe the

445 views • 28 slides

Capital Quality Validation Webinar Sept. 17, 2020 Agenda Validation Overview

Capital Quality Validation Webinar Sept. 17, 2020 Agenda Validation Overview Validation Timeline Authorized Representative Validation Process How to Log In to QuickBase How to Reset Your Password How to

451 views • 43 slides

Security of Cyber-Physical Systems From Theory to Testbeds & Validation Joaquin Garcia-Alfaro

Security of Cyber-Physical Systems From Theory to Testbeds & Validation Joaquin Garcia-Alfaro CNRS SAMOVAR Lab & Tlcom SudParis Universit Paris-Saclay CyberICPS, ESORICS 2016, September 27, 2016 Context Dynamic Risk Approaches

890 views • 59 slides

N etwork safeguards are the first protec- tion barrier of IT sys- tem resources against

ISSA Journal | October 2007 ISSA The Global Voice of Information Security The Principles of Network Security Design By Mariusz Stawowski Deployment of an effective and scalable network security system requires proper designing

320 views • 3 slides

A Touch of Calculus: Shaking Up the Pre-Requisite Structure of College Mathematics Rick Cleary,

A Touch of Calculus: Shaking Up the Pre-Requisite Structure of College Mathematics Rick Cleary, Babson College Electronic Seminar on Math Education September 15, 2020 Thanks! To Haynes Miller and Tara Holm for the invitation. To

810 views • 48 slides

Crash and Burn: Learning from Failure SOA 2020 June 17, 2020 Crash and Burn Collette N.

Crash and Burn: Learning from Failure SOA 2020 June 17, 2020 Crash and Burn Collette N. McDonough Archivist and Library Manager at the Kettering Foundation Owned by one cat Crash and Burn One fails toward success.

434 views • 7 slides

SOA and ESB Mark Jeynes IBM Software, Asia Pacific jeynesm@au1.ibm.com Agenda Service

SOA and ESB Mark Jeynes IBM Software, Asia Pacific jeynesm@au1.ibm.com Agenda Service Orientation SCA / SDO Process Choreography WS-BPEL Enterprise Service Bus Demonstration WebSphere Integration Developer

593 views • 20 slides

Extending OAuth2 to Join Local Services into a Federative SOA M. Politze IT Center RWTH Aachen

Extending OAuth2 to Join Local Services into a Federative SOA M. Politze IT Center RWTH Aachen University Where are we now? You are here! 20 km Source: http://www.wissenschaft.nrw.de/studium/informieren/hochschulkarte-nrw/ 3 Extending

175 views • 17 slides

SoC, why should we care about Fault Injection Attacks ? Guillaume BOUFFARD (

SoC, why should we care about Fault Injection Attacks ? Guillaume BOUFFARD ( guillaume.boufgard@ssi.gouv.fr ) David EL-BAZE ( david.elbaze@ssi.gouv.fr ) with the help of Thomas TROUCHKINE Agence nationale de la scurit des systmes

523 views • 28 slides

Scalable Dense Matrix Multiplication on Multi-Socket Many-Core Systems with Fast Shared Memory

Scalable Dense Matrix Multiplication on Multi-Socket Many-Core Systems with Fast Shared Memory Ricardo Magana, Natalia Vassilieva Acknowledgment Ricardo Magaa magania@gmail.com And also many thanks to prof. Robert Van De Geijn, Field Van

529 views • 26 slides

LiteX: SoC builder and library OSDA Workshop (2019), Florence, March 29 Florent Kermarrec,

LiteX: SoC builder and library OSDA Workshop (2019), Florence, March 29 Florent Kermarrec, florent@enjoy-digital.fr 1 Enjoy-Digital Founded in 2011. FPGA consulting / Full FPGA based systems design. Reuse and create open-source tools/cores to

944 views • 42 slides

S O C I A L NETWORK ANALYSIS CURRENT VISUALIZATION PROBLEMS Flat network structure and a Poor

AN EXPLORATION BASED APPROACH TO S O C I A L NETWORK ANALYSIS CURRENT VISUALIZATION PROBLEMS Flat network structure and a Poor organization leads Network presentation can lead lack of focus lead to a shallow to overwhelming network to

151 views • 11 slides