High Level Fault Injection for Attack Simulation in Smart Cards

Rothbart, Klaus; Neffe, Ulrich; Steger, Ch.; Weiß, Reinhold; Rieger, Edgar; Muehlberger, A.

doi:10.1109/ats.2004.48

Cited by 32 publications

(14 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In our work, an executable model is produced using SystemC with the TLM extensions [8]. SystemC has been used to produce a methodology to simulate security attacks on smart cards with fault injection [9] and it has also been used to create an environment for design verification of smart cards using security attack simulation [10]. In TLM, communication among computation components is modelled by channels and transaction requests go on by calling interface functions of these channel models [11].…”

Section: Related Workmentioning

confidence: 99%

Modelling Smart Card Security Protocols in SystemC TLM

Bushager

Zwoliński

2010

2010 IEEE/IFIP International Conference on Embedded and Ubiquitous Computing

View full text Add to dashboard Cite

Abstract-Smart cards are an example of advanced chip technology. They allow information transfer between the card holder and the system over secure networks, but they contain sensitive data related to both the card holder and the system, that has to be kept private and confidential. The objective of this work is to create an executable model of a smart card system, including the security protocols and transactions, and to examine the strengths and determine the weaknesses by running tests on the model. The security objectives have to be considered during the early stages of systems development and design; an executable model will give the designer the advantage of exploring the vulnerabilities early, and therefore enhancing the system security. The Unified Modeling Language (UML) 2.0 is used to model the smart card security protocol. The executable model is programmed in SystemC with the Transaction Level Modeling (TLM) extensions. The final model was used to examine the effectiveness of a number of authentication mechanisms with different probabilities of failure. In addition, a number of probable attacks on the current security protocol were modeled to examine the vulnerabilities. The executable model shows that the smart card system security protocols and transactions need further improvement to withstand different types of security attacks.

show abstract

Section: Related Workmentioning

confidence: 99%

Modelling Smart Card Security Protocols in SystemC TLM

Bushager

Zwoliński

2010

2010 IEEE/IFIP International Conference on Embedded and Ubiquitous Computing

View full text Add to dashboard Cite

show abstract

“…In this process, an important issue is to identify objects susceptible to threats (e.g., access ports), sensitive information within the system and possible paths of accessing or modifying it [55]. We should also take into account the problem of security compromises as a consequence of other faults in the system (e.g., transient disturbances) and checking if they do not increase the probability of security threats, data leakage, open access paths to sensitive data, reveal passwords, create side channels for attacks, etc.…”

Section: Fault Injection Methods [52]mentioning

confidence: 99%

A Framework for Measuring Security as a System Property in Cyberphysical Systems

et al. 2016

View full text Add to dashboard Cite

This paper addresses the challenge of measuring security, understood as a system property, of cyberphysical systems, in the category of similar properties, such as safety and reliability. First, it attempts to define precisely what security, as a system property, really is. Then, an application context is presented, in terms of an attack surface in cyberphysical systems. Contemporary approaches related to the principles of measuring software properties are also discussed, with emphasis on building models. These concepts are illustrated in several case studies, based on previous work of the authors, to conduct experimental security measurements.

show abstract

“…1: Seamless error effect simulation intrusive approach. The effort for rewiring the VP to introduce additional saboteur modules, like in [2], [3] should be avoided. Approaches based on compiler modifications [4] provide one solution.…”

Section: Introductionmentioning

confidence: 98%

White-Box Error Effect Simulation for Assisted Safety Analysis

Reiter

Viehl

Bringmann

2015

2015 Euromicro Conference on Digital System Design

View full text Add to dashboard Cite

This paper presents an approach on extending virtual prototyping, commonly used for system verification and design space exploration, for safety analysis. Virtual prototyping will enhance safety analysis, overcoming the challenges resulting from the ever-increasing number of safety-related, complex, interconnected electronic systems. The presented integral fault injection framework enables safety analysis in combination with established system verification methods. It consists of a fault behavior specification methodology and the corresponding, reusable injection tool, with focus on seamless applicability in between functional models in early concept phases and low-level structural models in late design phases. Our approach works with third party compilers and simulators while providing a minimal intrusive approach using existing models. Selected use cases at gate, register-transfer and functional level demonstrate the usage of the approach.

show abstract

High Level Fault Injection for Attack Simulation in Smart Cards

Cited by 32 publications

References 4 publications

Modelling Smart Card Security Protocols in SystemC TLM

Modelling Smart Card Security Protocols in SystemC TLM

A Framework for Measuring Security as a System Property in Cyberphysical Systems

White-Box Error Effect Simulation for Assisted Safety Analysis

Contact Info

Product

Resources

About