An Autonomous, Self-Authenticating, and Self-Contained Secure Boot Process for Field-Programmable Gate Arrays

Owen, Don; Heeger, Derek; Chan, Calvin; Che, Wenjie; Saqib, Fareena; Areno, Matthew; Plusquellic, Jim

doi:10.3390/cryptography2030015

Cited by 19 publications

(8 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The leaked configuration is then collected to retrieve the entire confidential bitstream configuration. Recent work on the secure bitstream configuration at the boot level proposes the use of PUF technology and on-board peripherals for FPGA bitstream secure boot [17]. The ICAP is used to retrieve the configuration of the current programmable logic.…”

Section: Secure Boot In Fpgasmentioning

confidence: 99%

“…Another scheme implements self-authentication of the logic fabric design and extends the protection to include processor design [19]. As opposed to the work in [17], this work employs the use of Elliptic Curve Cryptography based asymmetric keys with Diffie-Helman key exchange for the key generation for encryption. A fuzzy key extractor is used to use extract hardware-based variations and to generate a key.…”

Section: Secure Boot In Fpgasmentioning

confidence: 99%

See 1 more Smart Citation

Secure Boot for Reconfigurable Architectures

2020

Self Cite

View full text Add to dashboard Cite

Reconfigurable computing is becoming ubiquitous in the form of consumer-based Internet of Things (IoT) devices. Reconfigurable computing architectures have found their place in safety-critical infrastructures such as the automotive industry. As the target architecture evolves, it also needs to be updated remotely on the target platform. This process is susceptible to remote hijacking, where the attacker can maliciously update the reconfigurable hardware target with tainted hardware configuration. This paper proposes an architecture of establishing Root of Trust at the hardware level using cryptographic co-processors and Trusted Platform Modules (TPMs) and enable over the air updates. The proposed framework implements a secure boot protocol on Xilinx based FPGAs. The project demonstrates the configuration of the bitstream, boot process integration with TPM and secure over-the-air updates for the hardware reconfiguration.

show abstract

Section: Secure Boot In Fpgasmentioning

confidence: 99%

Section: Secure Boot In Fpgasmentioning

confidence: 99%

Secure Boot for Reconfigurable Architectures

2020

Self Cite

View full text Add to dashboard Cite

show abstract

“…The leaked configuration is then collected to retrieve the entire confidential bitstream configuration. Recent work on the secure bitstream configuration at the boot level proposes the use of PUF technology and on-board peripherals for FPGA bitstream secure boot [16]. The ICAP is used to retrieve the configuration of the current programmable logic.…”

Section: Secure Boot In Fpgasmentioning

confidence: 99%

“…Another scheme implements selfauthentication of the logic fabric design and extends the protection to include processor design [18]. As opposed to [16], this work has employed the use of Elliptic Curve Cryptography based asymmetric keys with Diffie Helman key exchange for the key generation for encryption. A fuzzy key extractor is used to use extract hardware-based variations and to generate a key.…”

Section: Secure Boot In Fpgasmentioning

confidence: 99%

Secure Boot for Reconfigurable Architectures

Siddiqui¹,

Gui²,

Saqib³

2020

Preprint

Self Cite

View full text Add to dashboard Cite

Reconfigurable computing is becoming ubiquitous in the form of consumer-based Internet of Things (IoT) devices. Reconfigurable computing architectures have found their place in safety-critical infrastructures such as the automotive industry. As the target architecture evolves, it also needs to be updated remotely on the target platform. This process is susceptible to remote hijacking, where the attacker can maliciously update the reconfigurable hardware target with tainted hardware configuration. This paper proposes an architecture of establishing Root of Trust at the hardware level using cryptographic co-processors and Trusted Platform Modules (TPMs) and enable over the air updates. The proposed framework implements secure boot protocol on Xilinx based FPGAs. The project demonstrates the configuration of the bitstream, boot process integration with TPM and secure over-the-air updates for the hardware reconfiguration.

show abstract

“…Further the FPGA is updated after the decryption of the partial bitstreams but before its integrity is verified, potentially damaging the device if the bitstream has been tampered with. Owen et al [12] follow a similar approach, but use the PUF to generate a key in a way that is sensitive to all changes within the bitstream to achieve a self-authenticating design. While they therefore do not require the manufacturer provided authentication, they do however need physical access to the chip for the encryption of images since it can only be performed on-chip using a separate bitstream that contains the encryption core.…”

Section: Related Workmentioning

confidence: 99%

SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption

Unterstein

Jacob

Hanley

et al. 2019

Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop

View full text Add to dashboard Cite

FPGA system on chips (SoCs) are ideal computing platforms for edge devices in applications which require high performance through hardware acceleration and updatability due to long operation in the field. A secure update of hardware functionality can in general be achieved by using built-in cryptographic engines and provided secret key storage. However, reported examples have shown that such cryptographic engines may become insecure against side-channel attacks at any later point in time. This leaves already deployed systems vulnerable without any clear mitigation options. To solve this, we propose a comprehensive concept that uses an alternative and side-channel protected cryptographic engine within the FPGA logic instead of the built-in one for the crucial task of bitstream decryption. Remarkably this concept even allows to update the cryptographic engine itself. As proof of concept, we describe an application to the Xilinx Zynq-7020 FPGA SoC in detail using a leakage resilient decryption engine. The lack of accessible secret key storage poses a significant challenge and requires the use of a physical unclonable function (PUF) to generate a device intrinsic secret within the FPGA logic. At the same time this means that no manufacturer provided secret key storage or cryptography is required anymore; only a public key for signature verification of the first stage bootloader and initial static bitstream. We provide empirical results proving the side-channel security of the protected cryptographic engine as well as an evaluation of the PUF quality. The full design and source code is made available to encourage further research in this direction. CCS CONCEPTS • Security and privacy → Side-channel analysis and countermeasures; Embedded systems security; • Hardware → Reconfigurable logic applications.

show abstract

An Autonomous, Self-Authenticating, and Self-Contained Secure Boot Process for Field-Programmable Gate Arrays

Cited by 19 publications

References 10 publications

Secure Boot for Reconfigurable Architectures

Secure Boot for Reconfigurable Architectures

Secure Boot for Reconfigurable Architectures

SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption

Contact Info

Product

Resources

About