New security threats against chips containing scan chain structures

Rolt, Jean Da; Natale, Giorgio Di; Flottes, Marie-Lise; Rouzeyre, Bruno

doi:10.1109/hst.2011.5955005

Cited by 52 publications

(40 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [1], the authors claim that identification of these KFFs in the scan design is crucial for successful recovery of the encryption key. However, this has been contradicted in later works presented by Da Rolt et al [4], [5].…”

Section: Previous Workmentioning

confidence: 84%

“…Although scan-chain Designfor-Test (DFT) offers the highest testability, they are prone to scan-based side channel leakages which may help an intruder to perform a non-invasive attack on secure chips to extract secret information such as cryptographic keys from secure hardware implementations. In fact, there are works available in the literature which exploit this property, and they are referred to as scan-based side channel attacks [3], [4], [5]. However, these works do not consider any X-tolerant or X-masking logic which is widely used in industrial test compression schemes, and gravely affects the applicability and running time of these attacks.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Differential Scan Attack on AES with X-tolerant and X-masked Test Response Compactor

Ege

Das

Gosh

et al. 2012

2012 15th Euromicro Conference on Digital System Design

View full text Add to dashboard Cite

Abstract-Scan-chains are test infrastructures included in a circuit for providing high fault coverage. However, they can be exploited by an attacker as a side-channel in the case of a cryptographic application like AES. Test Compression and thereafter X-tolerance and X-masking over it, which reduce test effort without compromising on testability, can help in counteracting scan-based attacks. This work focuses on the security issues of an AES-circuit containing test compression with X-masking and X-tolerance logic. With experimental results, we show the weakness of such an AES circuit against our modified differential scan-attack. Finally, the paper outlines two suitable countermeasures to prevent such attacks.

show abstract

Section: Previous Workmentioning

confidence: 84%

Section: Introductionmentioning

confidence: 99%

Differential Scan Attack on AES with X-tolerant and X-masked Test Response Compactor

Ege

Das

Gosh

et al. 2012

2012 15th Euromicro Conference on Digital System Design

View full text Add to dashboard Cite

show abstract

“…Performance of the scan-path countermeasure CTL platform has been used to evaluate the [11] countermeasure. It is meant for scan-path protection and thus the attack has been mounted to discover k using the [15] methodology but applied in the ECC core, as described by A. Das in [16].…”

Section: A Performance Of the Platformmentioning

confidence: 99%

“…Once the unit starts he can interrupt it at any iteration of the Montgomery algorithm, see Figure 3, switch to test mode and scan-out the content of Q 0 and Q 1 . He also assumes that scan-paths are compressed, as described in [15], and therefore uses the parity evaluation of the output bits as a feedback for carrying out the attack.…”

Section: A Performance Of the Platformmentioning

confidence: 99%

Crypto-Test-Lab for security validation of ECC co-processor test infrastructure

Lupon

Rodríguez-Montañés

Manich

2017

2017 32nd Conference on Design of Circuits and Integrated Systems (DCIS)

View full text Add to dashboard Cite

Abstract-Elliptic Curve Cryptography (ECC) is a technology for public-key cryptography that is becoming increasingly popular because it provides greater speed and implementation compactness than other public-key technologies. Calculations, however, may not be executed by software, since it would be so time consuming, thus an ECC co-processor is commonly included to accelerate the speed.Test infrastructure in crypto co-processors is often avoided because it poses serious security holes against adversaries. However, ECC co-processors include complex modules for which only functional test methodologies are unsuitable, because they would take an unacceptably long time during the production test. Therefore, some internal test infrastructure is always included to permit the application of structural test techniques.Designing a secure test infrastructure is quite a complex task that relies on the designer's experience and on trial & error iterations over a series of different types of attacks. Most of the severe attacks cannot be simulated because of the demanding computational effort and the lack of proper attack models. Therefore, prototypes are prepared using FPGAs. In this paper, a Crypto-Test-Lab is presented that includes an ECC co-processor with flexible test infrastructure. Its purpose is to facilitate the design and validation of secure strategies for testing in this type of co-processor.

show abstract

“…To achieve better productivity SoC designers are forced to reuse design modules from external sources of IP of which security is not well verified. To prevent the security failure in one module from being cascaded through test subsystems of chips, security enhanced test access mechanisms are addressed to escape from the threat posed by untrustworthy cores [14,15]. A protection scheme is proposed for serial JTAG channels which are prone to be downgraded by any threat of a malicious chip in a JTAG chain [16].…”

Section: Introductionmentioning

confidence: 99%

An Efficient Technique to Protect AES Secret Key from Scan Test Channel Attacks

Song¹,

Jung²,

Jung³

et al. 2012

JSTS:Journal of Semiconductor Technology and Science

View full text Add to dashboard Cite

Abstract-Scan techniques are almost mandatorily adopted in designing current System-on-a-Chip (SoC) to enhance testability, but inadvertently secret keys can be stolen through the scan test channels of crypto SoCs. An efficient scan design technique is proposed in this paper to protect the secret key of an Advanced Encryption Standard (AES) core embedded in an SoC. A new instruction is added to IEEE 1149.1 boundary scan to use a fake key instead of user key, in which the fake key is chosen with meticulous care to improve the testability as well. Our approach can be implemented as user defined logic with conventional boundary scan design, hence no modification is necessary to any crypto IP core. Conformance to the IEEE 1149.1 standards is completely preserved while yielding better performance of area, power, and fault coverage with highly robust protection of the secret user key.

show abstract

New security threats against chips containing scan chain structures

Cited by 52 publications

References 13 publications

Differential Scan Attack on AES with X-tolerant and X-masked Test Response Compactor

Differential Scan Attack on AES with X-tolerant and X-masked Test Response Compactor

Crypto-Test-Lab for security validation of ECC co-processor test infrastructure

An Efficient Technique to Protect AES Secret Key from Scan Test Channel Attacks

Contact Info

Product

Resources

About