Processor Anchor to Increase the Robustness Against Fault Injection and Cyber Attacks

One major advance in software security would be to use robust processors which could assist the code developer to thwart both cyber and physical attacks. This paper presents a hardware-based solution which increases the security by checking the integrity of executed code on any microcontroller. Unlike other Control Flow Integrity (CFI) protections, this solution does not require modifications of the CPU pipeline, but relies on monitoring the interface between the processor and its instruction cache. The integrity of the execution flow and the instruction sequences (called Basic Blocks) is checked by hardware with precomputed metadata. Another module is dedicated to speed up the access to these metadata. This paper shows the effectiveness of the solution as the impact is as much as 21% in average on the execution time at the price of using memory space to store metadata along with the code.

Mots clés

Control Flow Integrity Fault injection Control Flow Graph Hardware protection Cyber Escort Unit (CEU)

Domaines

Electronique

Jean-Luc Danger : Connectez-vous pour contacter le contributeur

https://telecom-paris.hal.science/hal-03138848

Soumis le : jeudi 11 février 2021-14:42:53

Dernière modification le : lundi 9 octobre 2023-12:49:44

Dates et versions

hal-03138848 , version 1 (11-02-2021)

Identifiants

HAL Id : hal-03138848 , version 1
DOI : 10.1007/978-3-030-68773-1_12

Citer

Jean-Luc Danger, Adrien Facon, Sylvain Guilley, Karine Heydemann, Ulrich Kühne, et al.. Processor Anchor to Increase the Robustness Against Fault Injection and Cyber Attacks. Constructive Side-Channel Analysis and Secure Design. COSADE 2020, Apr 2020, Lugano, Switzerland. pp.254-274, ⟨10.1007/978-3-030-68773-1_12⟩. ⟨hal-03138848⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

INSTITUT-TELECOM CNRS LIP6 SORBONNE-UNIVERSITE LTCI COMELEC SSH SU-SCIENCES IP_PARIS

169 Consultations

0 Téléchargements