Design comparison to identify malicious hardware in external intellectual property

Trey Reece; Daniel B. Limbrick; William H. Robinson

doi:10.1109/trustcom.2011.82

Design comparison to identify malicious hardware in external intellectual property

Trey Reece
, Daniel B. Limbrick
, William H. Robinson

Electrical and Computer Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Modern circuits incorporate many components that are designed by outside sources. Unfortunately, these external designs introduce a new vector of attacking a circuit through the introduction of malicious hardware. Identifying such an insertion in external intellectual property is difficult, as the labor cost and time required to investigate these designs manually is prohibitive. Additionally, due to state explosion, it is impossible to exhaustively test every possible input combination. This paper describes a method of automatically comparing two different circuits with similar functionality, in order to verify that these two designs do what they are supposed to do, and nothing more. The designs are compared by unrolling the state logic internally, so that the design outputs are represented in terms of prior inputs. This technique is advantageous as neither design needs to be a known safe design, making the task of finding similar circuits simple. Additionally, this converts the state explosion dilemma into a more easily computable Boolean satisfiability problem. The technique has been evaluated using several benchmark circuits, including circuits that contain malicious modifications. © 2011 IEEE.

Original language	English
Title of host publication	10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011
DOIs	https://doi.org/10.1109/trustcom.2011.82
State	Published - 2011

Access to Document

10.1109/trustcom.2011.82

Cite this

Reece, T., Limbrick, D. B., & Robinson, W. H. (2011). Design comparison to identify malicious hardware in external intellectual property. In 10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011 https://doi.org/10.1109/trustcom.2011.82

Reece, Trey ; Limbrick, Daniel B. ; Robinson, William H. / Design comparison to identify malicious hardware in external intellectual property. 10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011. 2011.

@inproceedings{3d414a0fa4954bab85d0f2b5952a5436,

title = "Design comparison to identify malicious hardware in external intellectual property",

abstract = "Modern circuits incorporate many components that are designed by outside sources. Unfortunately, these external designs introduce a new vector of attacking a circuit through the introduction of malicious hardware. Identifying such an insertion in external intellectual property is difficult, as the labor cost and time required to investigate these designs manually is prohibitive. Additionally, due to state explosion, it is impossible to exhaustively test every possible input combination. This paper describes a method of automatically comparing two different circuits with similar functionality, in order to verify that these two designs do what they are supposed to do, and nothing more. The designs are compared by unrolling the state logic internally, so that the design outputs are represented in terms of prior inputs. This technique is advantageous as neither design needs to be a known safe design, making the task of finding similar circuits simple. Additionally, this converts the state explosion dilemma into a more easily computable Boolean satisfiability problem. The technique has been evaluated using several benchmark circuits, including circuits that contain malicious modifications. {\textcopyright} 2011 IEEE.",

author = "Trey Reece and Limbrick, \{Daniel B.\} and Robinson, \{William H.\}",

year = "2011",

doi = "10.1109/trustcom.2011.82",

language = "English",

booktitle = "10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011",

}

Reece, T, Limbrick, DB & Robinson, WH 2011, Design comparison to identify malicious hardware in external intellectual property. in 10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011. https://doi.org/10.1109/trustcom.2011.82

Design comparison to identify malicious hardware in external intellectual property. / Reece, Trey; Limbrick, Daniel B.; Robinson, William H.
10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011. 2011.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Design comparison to identify malicious hardware in external intellectual property

AU - Reece, Trey

AU - Limbrick, Daniel B.

AU - Robinson, William H.

PY - 2011

Y1 - 2011

N2 - Modern circuits incorporate many components that are designed by outside sources. Unfortunately, these external designs introduce a new vector of attacking a circuit through the introduction of malicious hardware. Identifying such an insertion in external intellectual property is difficult, as the labor cost and time required to investigate these designs manually is prohibitive. Additionally, due to state explosion, it is impossible to exhaustively test every possible input combination. This paper describes a method of automatically comparing two different circuits with similar functionality, in order to verify that these two designs do what they are supposed to do, and nothing more. The designs are compared by unrolling the state logic internally, so that the design outputs are represented in terms of prior inputs. This technique is advantageous as neither design needs to be a known safe design, making the task of finding similar circuits simple. Additionally, this converts the state explosion dilemma into a more easily computable Boolean satisfiability problem. The technique has been evaluated using several benchmark circuits, including circuits that contain malicious modifications. © 2011 IEEE.

AB - Modern circuits incorporate many components that are designed by outside sources. Unfortunately, these external designs introduce a new vector of attacking a circuit through the introduction of malicious hardware. Identifying such an insertion in external intellectual property is difficult, as the labor cost and time required to investigate these designs manually is prohibitive. Additionally, due to state explosion, it is impossible to exhaustively test every possible input combination. This paper describes a method of automatically comparing two different circuits with similar functionality, in order to verify that these two designs do what they are supposed to do, and nothing more. The designs are compared by unrolling the state logic internally, so that the design outputs are represented in terms of prior inputs. This technique is advantageous as neither design needs to be a known safe design, making the task of finding similar circuits simple. Additionally, this converts the state explosion dilemma into a more easily computable Boolean satisfiability problem. The technique has been evaluated using several benchmark circuits, including circuits that contain malicious modifications. © 2011 IEEE.

UR - https://dx.doi.org/10.1109/TrustCom.2011.82

U2 - 10.1109/trustcom.2011.82

DO - 10.1109/trustcom.2011.82

M3 - Conference contribution

BT - 10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011

ER -

Reece T, Limbrick DB, Robinson WH. Design comparison to identify malicious hardware in external intellectual property. In 10th IEEE Int. Conf. on Trust, Security and Privacy in Computing and Communications, TrustCom 2011, 8th IEEE Int. Conf. on Embedded Software and Systems, ICESS 2011, 6th Int. Conf. on Frontier of Computer Science and Technology, FCST 2011. 2011 doi: 10.1109/trustcom.2011.82

Design comparison to identify malicious hardware in external intellectual property

Abstract

Access to Document

Other files and links

Fingerprint

Cite this