A survey on security features in modern FPGAs

Druyer, R.; Torres, Lionel; Benoit, Pascal; Bonzom, P.V.; Le-Quere, P.

doi:10.1109/recosoc.2015.7238102

Cited by 16 publications

(5 citation statements)

References 5 publications

(14 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The bitstream is decrypted every time the FPGA programming is updated, using a protected decryption key [71]. Unfortunately, bitstream formats are now kept confidential by the vendors, which makes bitstream reversing a laborious, challenging task though not impossible [37]. Even though there are practical solutions for loading encrypted bitstreams on all major vendors, overall, this limits the ability of the open-source research community to explore additional protections.…”

Section: A General Attacks In Fpgasmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Trusted Computing Solutions Using FPGAs

2023

View full text Add to dashboard Cite

Ensuring the security and privacy of computation and data management in the cloud and edge is an ever-important requirement. There are several working solutions today for trusted computing with general purpose processors, for instance, Intel SGX and ARM TrustZone. However, with the widespread commercial adoption of specialized hardware accelerators in the cloud and at the edge, most importantly FPGAs, two questions emerge: 1) How secure are they against threats? and 2) How could FPGAs be utilized for more efficient trusted computing? In this survey, we investigate these two questions precisely. Even though there have been numerous surveys in the past on the security of FPGAs, we believe it is timely to study the space of related work again, given the large number of data-centric applications aimed at targeting trusted execution environments that have recently appeared. Therefore, in addition to presenting an overview of state of the art, we also highlight some opportunities for FPGAs in the context of providing efficient trusted computation.

show abstract

Section: A General Attacks In Fpgasmentioning

confidence: 99%

“…Thus, hiding the final manufacture of the hardware [77]. Data confidentiality [68] Side-channel attacks [6] Hardware trojan insertion [69] IP thief [6] Attestation key [37]…”

Section: A General Attacks In Fpgasmentioning

confidence: 99%

A Survey of Trusted Computing Solutions Using FPGAs

2023

View full text Add to dashboard Cite

show abstract

“…In 2014 S. M. Trimberger and J. J. Moore [7] published a survey that presents common threats to FPGAs and focuses on the contemporary security solutions that the major FPGA vendors offer to combat them. In a survey published in 2015 [8], R. Druyer et al, present a direct comparison of the security features offered by the largest FPGA vendors to assess to what extent they are able to combat existing threats. In 2017, S. M. Trimberger and S. McNeil [9] investigated the security threats FPGAs face in the environment of data centers (such as Amazon Web Services (AWS) cloud-based FPGA instances [10]).…”

Section: Previous Workmentioning

confidence: 99%

“…Since the purpose of a watermark is to protect against IP infringement, making reference to such techniques in this survey might seem out of scope, but actually, the watermarking technique presented in [99], describes a very basic form of LUT logic obfuscation. In this paper, Schmid et al uses FPGA dark silicon 8 to stealthily insert watermark information. If a situation calls for it, a designer can prove the ownership of a given implementation by extracting the watermark from the bitstream.…”

Section: ) Watermarkingmentioning

confidence: 99%

FPGA Bitstream Modification: Attacks and Countermeasures

Moraitis

2023

IEEE Access

View full text Add to dashboard Cite

Advances in FPGA technology in recent years have resulted in an expansion of its usage in a very wide spectrum of applications. Apart from serving the traditional prototyping purposes, FPGAs are currently regarded as an integral part of embedded systems used in many industries, including communication, medical, aerospace, automotive, and military. Moreover, the emerging trend of AI has found FPGAs to be at the technological forefront with their use as deep learning acceleration platforms. The demand for FPGAs has grown to the point that major companies (e.g. Amazon) are offering cloudbased access to FPGAs, known as FPGA-as-a-Service. In many applications, FPGAs handle sensitive data and/or host cryptographic algorithm implementations. These FPGAs are not always located in a tamperresistant environment, which makes their security a major concern, especially in light of the ever-growing number of publications demonstrating effective attacks specifically tailored to exploit the physical traits of FPGA implementations. In this survey, we cover the subset of those attacks that involve tampering with the FPGA configuration bitstream. We start by discussing how the FPGA vendors attempt to protect their products and how malicious parties try to overcome this protection. We then proceed to present the different bitstream modification attacks that can be found in the literature organized according to their targets. Finally, we present various countermeasures that can be deployed, drawing on bibliographic references from works specifically focused on FPGA bitstream protection, as well as those initially proposed for different purposes or devices that can be adapted for bitstream protection.

show abstract

“…Security features, such as anti-tampering and data protection techniques, are described in [21]. In [22], the authors define an FPGA threat model and evaluate how the security features offered by most FPGA vendors address the threats.…”

Section: Related Workmentioning

confidence: 99%

Securing Soft IP Cores in FPGA based Reconfigurable Mobile Heterogeneous Systems

Carelli,

Basile,

Savino

et al. 2019

Preprint

View full text Add to dashboard Cite

The mobile application market is rapidly growing and changing, offering always brand new software to install in increasingly powerful devices. Mobile devices become pervasive and more heterogeneous, embedding latest technologies such as multicore architectures, special-purpose circuits and reconfigurable logic. In a future mobile market scenario reconfigurable systems are employed to provide high-speed functionalities to assist execution of applications. However, new security concerns are introduced. In particular, protecting the Intellectual Property of the exchanged soft IP cores is a serious concern. The available techniques for preserving integrity, confidentiality and authenticity suffer from the limitation of heavily relying onto the system designer. In this paper we propose two different protocols suitable for the secure deployment of soft IP cores in FPGA-based mobile heterogeneous systems where multiple independent actors are involved: a simple scenario requiring trust relationship between entities, and a more complex scenario where no trust relationship exists through adoption of the Direct Anonymous Attestation protocol. Finally, we provide a prototype implementation of the proposed architectures.

show abstract

A survey on security features in modern FPGAs

Cited by 16 publications

References 5 publications

A Survey of Trusted Computing Solutions Using FPGAs

A Survey of Trusted Computing Solutions Using FPGAs

FPGA Bitstream Modification: Attacks and Countermeasures

Securing Soft IP Cores in FPGA based Reconfigurable Mobile Heterogeneous Systems

Contact Info

Product

Resources

About