research-article

The Curious Case of Trusted IC Provisioning in Untrusted Testing Facilities

Authors:

Sandip Ray,

Atul Prasad Deb Nath,

Kshitij Raj,

Swarup BhuniaAuthors Info & Claims

GLSVLSI '21: Proceedings of the 2021 Great Lakes Symposium on VLSI

Pages 207 - 212

https://doi.org/10.1145/3453688.3461758

Published: 22 June 2021 Publication History

Get Access

Abstract

Asset provisioning is a crucial step in present-day IC manufacturing process. The nature of on-chip assets can range from crypto keys, IC configurations, and manufacturer firmware to target specific security specifications, policies, and chip debugging information. Given the criticality of the assets, a major part of IC security research is targeted towards the development of their protection mechanisms, especially in post-fabrication deployment phase. However, in this work our curious observation is that a series of novel attack surfaces can stem from asset provisioning at untrusted testing sites and colluding foundries which are not covered by existing threat models and defense schemes. To that end, we study the state-of-the-art protection mechanisms adopted for secure IC provisioning at untrusted testing facilities and highlight their security vulnerabilities. In particular, we show the inadequacy of existing authentication and design obfuscation-based defense mechanisms during asset provisioning through a secure root of trust.

References

[1]

Defense Microelectronics Activity. 2017. DMEA Trusted IC Program. https: //www.dmea.osd.mil/TrustedIC.aspx/.

Google Scholar

[2]

R. S. Chakraborty and S. Bhunia. 2009. HARPOON: An Obfuscation-Based SoC Design Methodology for Hardware Protection. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems 28, 10 (2009), 1493--1502. https: //doi.org/10.1109/TCAD.2009.2028166

Digital Library

Google Scholar

[3]

Atul Prasad Deb Nath, Srivalli Boddupalli, Swarup Bhunia, and Sandip Ray. 2020. Resilient System-on-Chip Designs With NoC Fabrics. IEEE Transactions on Information Forensics and Security 15 (2020), 2808--2823. https://doi.org/10.1109/ TIFS.2020.2977534

Digital Library

Google Scholar

[4]

Atul Prasad Deb Nath, Sandip Ray, Abhishek Basak, and Swarup Bhunia. 2018. System-on-chip security architecture and CAD framework for hardware patch. In 2018 23rd Asia and South Pacific Design Automation Conference (ASP-DAC). 733--738. https://doi.org/10.1109/ASPDAC.2018.8297409

Digital Library

Google Scholar

[5]

F. Koushanfar. 2012. Provably Secure Active IC Metering Techniques for Piracy Avoidance and Digital Rights Management. IEEE Transactions on Information Forensics and Security 7, 1 (2012), 51--63. https://doi.org/10.1109/TIFS.2011. 2163307

Digital Library

Google Scholar

[6]

F. Koushanfar and Y. Alkabani. 2010. Provably secure obfuscation of diverse watermarks for sequential circuits. In 2010 IEEE International Symposium on Hardware-Oriented Security and Trust (HOST). 42--47. https://doi.org/10.1109/ HST.2010.5513115

Crossref

Google Scholar

[7]

Aswin Raghav Krishna, Seetharam Narasimhan, Xinmu Wang, and Swarup Bhunia. 2011. MECCA: A Robust Low-Overhead PUF Using Embedded Memory Array. In Cryptographic Hardware and Embedded Systems -- CHES 2011, Bart Preneel and Tsuyoshi Takagi (Eds.). Springer Berlin Heidelberg, Berlin, Heidelberg, 407--420.

Google Scholar

[8]

Bill McClean. 2020. McClean Report: A Complete Analysis and Forecast of the Integrated Circuit Industry. https://www.icinsights.com/news/bulletins/Fabless-Company-Share-Of-IC-Sales-To-Set-New-Record-In-2020-At-329-/.

Google Scholar

[9]

S. M. Plaza and I. L. Markov. 2014. Protecting integrated circuits from piracy with test-aware logic locking. In 2014 IEEE/ACM International Conference on Computer-Aided Design (ICCAD). 262--269. https://doi.org/10.1109/ICCAD.2014.7001361

Crossref

Google Scholar

[10]

J. Rajendran, Y. Pino, O. Sinanoglu, and R. Karri. 2012. Security analysis of logic obfuscation. In DAC Design Automation Conference 2012. 83--89. https: //doi.org/10.1145/2228360.2228377

Digital Library

Google Scholar

[11]

J. A. Roy, F. Koushanfar, and I. L. Markov. 2008. EPIC: Ending Piracy of Integrated Circuits. In 2008 Design, Automation and Test in Europe. 1069--1074. https: //doi.org/10.1109/DATE.2008.4484823

Crossref

Google Scholar

[12]

Reuters Staff. 2017. TSMC says latest chip plant will cost around $20 bln. https://www.reuters.com/article/tsmc-investment/tsmc-says-latest-chip-plant-will-cost-around-20-bln-idUSL3N1O737Z.

Google Scholar

[13]

P. Subramanyan, S. Ray, and S. Malik. 2015. Evaluating the security of logic encryption algorithms. In 2015 IEEE International Symposium on Hardware Oriented Security and Trust (HOST). 137--143. https://doi.org/10.1109/HST.2015.714025

Crossref

Google Scholar

Cited By

View all

Kulkarni AHazari NNiamat M(2024)A Zero Trust-Based Framework Employing Blockchain Technology and Ring Oscillator Physical Unclonable Functions for Security of Field Programmable Gate Array Supply ChainIEEE Access10.1109/ACCESS.2024.341857212(89322-89338)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2024.3418572

Index Terms

The Curious Case of Trusted IC Provisioning in Untrusted Testing Facilities
1. Security and privacy
  1. Security in hardware
    1. Hardware security implementation
      1. Hardware-based security protocols

Recommendations

Lessons Learned from a Comparative Analysis of Counterintelligence and Insider Threat Mitigation Case Studies in Nuclear Facilities
Abstract
According to the International Atomic Energy Agency’s (IAEA) Information Circular (INFCIRC) 908, because “insiders possess access, authority and knowledge … [they] pose an elevated threat to nuclear security.” However, the lack of publicly ...
Advanced Penetration Testing: Hacking the World's Most Secure Networks
Security testing of a secure cache design
HASP '13: Proceedings of the 2nd International Workshop on Hardware and Architectural Support for Security and Privacy

Cache side channel attacks are attacks that leak secret information through physical implementation of cryptographic operations, nullifying cryptographic protection. Recently, these attacks have received great interest. Previous research found that ...

Comments

Information & Contributors

Information

Published In

GLSVLSI '21: Proceedings of the 2021 Great Lakes Symposium on VLSI

June 2021

504 pages

ISBN:9781450383936

DOI:10.1145/3453688

General Chairs:
Yiran Chen
Duke University, USA
,
Victor Zhirnov
Semiconductor Research Corporation, USA
,
Program Chairs:
Avesta Sasan
George Mason University, USA
,
Ioannis Savidis
Drexel University, USA

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 22 June 2021

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

GLSVLSI '21

Sponsor:

SIGDA

GLSVLSI '21: Great Lakes Symposium on VLSI 2021

June 22 - 25, 2021

Virtual Event, USA

Acceptance Rates

Overall Acceptance Rate 312 of 1,156 submissions, 27%

Upcoming Conference

GLSVLSI '25

Sponsor:
sigda

Great Lakes Symposium on VLSI 2025

June 30 - July 2, 2025

New Orleans , LA , USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
99
Total Downloads

Downloads (Last 12 months)8
Downloads (Last 6 weeks)1

Reflects downloads up to 05 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Kulkarni AHazari NNiamat M(2024)A Zero Trust-Based Framework Employing Blockchain Technology and Ring Oscillator Physical Unclonable Functions for Security of Field Programmable Gate Array Supply ChainIEEE Access10.1109/ACCESS.2024.341857212(89322-89338)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2024.3418572

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Lessons Learned from a Comparative Analysis of Counterintelligence and Insider Threat Mitigation Case Studies in Nuclear Facilities

Advanced Penetration Testing: Hacking the World's Most Secure Networks

Security testing of a secure cache design

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations