Information flow isolation in I2C and USB

Oberg, Jason; Hu, Wei; Irturk, Ali; Tiwari, Mohit; Sherwood, Timothy; Kastner, Ryan

doi:10.1145/2024724.2024782

Cited by 53 publications

(44 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As discussed in past work [7], GLIFT allows system designers to determine if any information flows exist within their systems; we clarify here that we use information flow to mean a logical flow, as we consider other types of flows (e.g., physical phenomena such as electromagnetic radiation or power fluctuations) as out of the scope of this work. Logical flows can be further broken down into two types: functional flows and timing flows.…”

Section: Isolating Timing Channelsmentioning

confidence: 99%

“…To do so, we apply GLIFT logic to the cache system as described in past work [7]. Specifically, we remove the hardware modules associated with the cache (cache control logic and the memory itself) and synthesize them to logic gates and flip-flops using Synopsys' Design Compiler targeting its and or.db library.…”

Section: A Identifying the Cache Attack As A Timing Channelmentioning

confidence: 99%

See 1 more Smart Citation

A Practical Testing Framework for Isolating Hardware Timing Channels

Oberg

Meiklejohn

Sherwood

et al. 2013

Design, Automation &Amp; Test in Europe Conference &Amp; Exhibition (DATE), 2013

Self Cite

View full text Add to dashboard Cite

Abstract-This work identifies a new formal basis for hardware information flow security by providing a method to separate timing flows from other flows of information. By developing a framework for identifying these different classes of information flow at the gate-level, one can either confirm or rule out the existence of such flows in a provable manner. To demonstrate the effectiveness of our presented model, we discuss its usage on a practical example: a CPU cache in a MIPS processor written in Verilog HDL and simulated in a scenario which accurately models previous cache-timing attacks. We demonstrate how our framework can be used to isolate the timing channel used in these attacks.

show abstract

Section: Isolating Timing Channelsmentioning

confidence: 99%

Section: A Identifying the Cache Attack As A Timing Channelmentioning

confidence: 99%

A Practical Testing Framework for Isolating Hardware Timing Channels

Oberg

Meiklejohn

Sherwood

et al. 2013

Design, Automation &Amp; Test in Europe Conference &Amp; Exhibition (DATE), 2013

Self Cite

View full text Add to dashboard Cite

show abstract

“…not more than two devices can be connected with each other at a time. Whereas USB has problem of using multiplexer for communication with other devices which makes it bulky [5,6] . Only I 2 C and CAN protocol uses software addressing but only I 2 C is convenient to design for ICs because CAN is specifically designed for automobiles.…”

Section: Introductionmentioning

confidence: 99%

ASIC Implementation of I2C Master Bus Controller Firm IP Core

Sindhu¹,

Prakash²,

K.V³

2015

VLSICS

View full text Add to dashboard Cite

show abstract

“…Since GLIFT targets the lowest digital abstraction, it is able to detect and capture information leaking through time. This claim, however, is made in some of the initial work on GLIFT [3], [5], [11] but never thoroughly formalized. One of the specific contributions of this paper is to make this formalism much more apparent and we do so in Section IV.…”

Section: Introductionmentioning

confidence: 99%

“…The shared bus in modern systems has been the source of the so called bus-contention channel [13] in which information can be covertly communicated through the traffic on a global bus. Previous work has explored how to identify information flows in global buses using GLIFT [11] but has fallen short of classifying these flows as functional or timing. Beyond the bus, we examine in Section VII the CPU cache; as previously mentioned, the cache is a common vulnerability in modern systems, as it is typically susceptible to leaking secret information through timing channels.…”

Section: Introductionmentioning

confidence: 99%

Leveraging Gate-Level Properties to Identify Hardware Timing Channels

Oberg

Meiklejohn

Sherwood

et al. 2014

IEEE Trans. Comput.-Aided Des. Integr. Circuits Syst.

Self Cite

View full text Add to dashboard Cite

Abstract-Modern embedded computing systems such as medical devices, airplanes, and automobiles continue to dominate some of the most critical aspects of our lives. In such systems, the movement of information throughout a device must be tightly controlled to prevent violations of privacy or integrity. Unfortunately, bounding the flow of information can often present a significant challenge, as information can flow through channels that are difficult to detect, such as timing channels. As has been demonstrated by recent research in hardware security, information flow tracking techniques deployed at the hardware or gate level show promise at identifying these "timing flows" but provide no formal statements about this claim NOR mechanisms for separating out timing information from other types of flows. In this paper, we first prove that gate-level information flow tracking can in fact detect timing flows. In addition, we work to identify these timing flows separately from other flows by presenting a framework for identifying a different type of flow that we call functional flows. By using this framework to either confirm or rule out the existence of such flows, we leverage the previous work in hardware information flow tracking to effectively isolate timing flows. To show the effectiveness of this model, we demonstrate its usage on three practical examples: a shared bus (I 2 C), a cache in a MIPS-based processor, and an RSA encryption core, all of which were written in Verilog/VHDL and then simulated in a variety of scenarios. In each scenario, we demonstrate how our framework can be used to identify timing and functional flows and also analyze our model's overhead.

show abstract

Information flow isolation in I2C and USB

Cited by 53 publications

References 11 publications

A Practical Testing Framework for Isolating Hardware Timing Channels

A Practical Testing Framework for Isolating Hardware Timing Channels

ASIC Implementation of I2C Master Bus Controller Firm IP Core

Leveraging Gate-Level Properties to Identify Hardware Timing Channels

Contact Info

Product

Resources

About