Oscillator without a combinatorial loop and its threat to FPGA in data centre

Sugawara, Takeshi; Sakiyama, Kazuo; Nashimoto, Shoei; Suzuki, Daisuke; Nagatsuka, T.

doi:10.1049/el.2019.0163

Cited by 47 publications

(23 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As AWS prohibits combinatorial loops from user designs [2], we use alternative RO designs introduced recently [13], [33]. Although traditional ROs use only combinational logic through lookup-tables (LUT-RO), by replacing a buffer stage with a latch (LD-RO) or a flip-flop (FF-RO), one can overcome restrictions placed by cloud providers today.…”

Section: Methodsmentioning

confidence: 99%

“…Simply banning combinatorial loops [14], [15], [24], [36], [47] has proven to be insufficient, since both Time-to-Digital Converters (TDCs) [30], [31], [47] and alternative ring oscillator (RO) designs [13], [33] can bypass design checks implemented by some cloud FPGA providers, with others not deploying any such checks at all. These alternative designs could be detected in some cases, by banning latches [13], [15], [33] and only allowing global clocks to drive flip-flops [13], [33]. However, alternative TDC designs without latches, and gated global clocks through clock enable pins may still be able to circumvent these proposed checks.…”

Section: A Countermeasuresmentioning

confidence: 99%

“…Ring Oscillators (ROs) and Time-to-Digital Converters (TDCs) have also been used to conduct intra-chip [25], [30], [47] and inter-chip [31] side-channel attacks. Although some cloud providers, such as Amazon AWS, detect ROs and prohibit their use [2], recent work [13], [33] has demonstrated that alternative RO designs can bypass cloud restrictions. Neither of the two works conducted a practical attack: Sugawara et al merely proved that instantiation of alternative ROs was possible on AWS [33], while Giechaskiel et al characterized long-wire leakage on local and cloud FPGAs leveraging ROs that are likewise not caught by the design rule checks of the cloud providers [13].…”

Section: B Remote Fpga Attacksmentioning

confidence: 99%

“…Although some cloud providers, such as Amazon AWS, detect ROs and prohibit their use [2], recent work [13], [33] has demonstrated that alternative RO designs can bypass cloud restrictions. Neither of the two works conducted a practical attack: Sugawara et al merely proved that instantiation of alternative ROs was possible on AWS [33], while Giechaskiel et al characterized long-wire leakage on local and cloud FPGAs leveraging ROs that are likewise not caught by the design rule checks of the cloud providers [13]. Long-wire leakage requires transmitter and receiver long wires to be adjacent, whereas we have constructed the first cloud-based covert channel, which remains fast and accurate despite physical isolation to separate SLRs.…”

Section: B Remote Fpga Attacksmentioning

confidence: 99%

See 3 more Smart Citations

Reading Between the Dies: Cross-SLR Covert Channels on Multi-Tenant Cloud FPGAs

Giechaskiel

Rasmussen

Szefer

2019

2019 IEEE 37th International Conference on Computer Design (ICCD)

View full text Add to dashboard Cite

Field-Programmable Gate Arrays (FPGAs) are becoming increasingly available via commercial cloud providers, which currently allocate devices on a per-user basis. As the underlying hardware is often underutilized, several proposals for multi-tenant use of FPGA resources have been brought forth, along with some initial work on security attacks in this setting. Simultaneously, high-end FPGAs are being produced with 2.5D integration of multiple distinct dies, called Super Logic Regions (SLRs), onto the same chip. Although one might expect that physical separation of logic onto separate dies could prevent multitenant attacks, this paper demonstrates for the first time that cross-SLR information leaks based on sensing voltage changes within the FPGA chip are possible, without physical access to or modification of the boards. The cross-SLR covert channel is characterized analytically and experimentally on five Xilinx Virtex UltraScale+ FPGAs, both locally and on the Amazon and Huawei clouds. Several configurations of the source transmitters and the sink receivers are tested, including their locations, types, and sizes. The power-based channel is shown to have a bandwidth upwards of 4.6 Mbps and accuracy of over 97.6%. Consequently, as physical separation of tenants onto separate dies (SLRs) is an insufficient countermeasure against information leaks, hardware-level architectural improvements are necessary to make secure multi-tenant FPGAs on shared clouds a reality.

show abstract

Section: Methodsmentioning

confidence: 99%

Section: A Countermeasuresmentioning

confidence: 99%

Section: B Remote Fpga Attacksmentioning

confidence: 99%

Section: B Remote Fpga Attacksmentioning

confidence: 99%

See 2 more Smart Citations

Reading Between the Dies: Cross-SLR Covert Channels on Multi-Tenant Cloud FPGAs

Giechaskiel

Rasmussen

Szefer

2019

2019 IEEE 37th International Conference on Computer Design (ICCD)

View full text Add to dashboard Cite

show abstract

“…It should be noted that some cloud providers such as Amazon Web Services (AWS) place restrictions on the types of circuits that can be instantiated on their FPGAs, and prohibit combinatorial loops including ring oscillators. Although in this work we primarily use conventional ring oscillators, Section V-E shows that they can be easily replaced by alternate designs proposed in recent work [8], [10], [11], [34], which bypass cloud countermeasures.…”

Section: Threat Modelmentioning

confidence: 99%

C³APSULe: Cross-FPGA Covert-Channel Attacks through Power Supply Unit Leakage

Giechaskiel

Rasmussen

Szefer

2020

2020 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

Field-Programmable Gate Arrays (FPGAs) are versatile, reconfigurable integrated circuits that can be used as hardware accelerators to process highly-sensitive data. Leaking this data and associated cryptographic keys, however, can undermine a system's security. To prevent potentially unintentional interactions that could break separation of privilege between different data center tenants, FPGAs in cloud environments are currently dedicated on a per-user basis. Nevertheless, while the FPGAs themselves are not shared among different users, other parts of the data center infrastructure are. This paper specifically shows for the first time that powering FPGAs, CPUs, and GPUs through the same power supply unit (PSU) can be exploited in FPGA-to-FPGA, CPU-to-FPGA, and GPU-to-FPGA covert channels between independent boards. These covert channels can operate remotely, without the need for physical access to, or modifications of, the boards. To demonstrate the attacks, this paper uses a novel combination of "sensing" and "stressing" ring oscillators as receivers on the sink FPGA. Further, ring oscillators are used as transmitters on the source FPGA. The transmitting and receiving circuits are used to determine the presence of the leakage on off-the-shelf Xilinx boards containing Artix 7 and Kintex 7 FPGA chips. Experiments are conducted with PSUs by two vendors, as well as CPUs and GPUs of different generations. Moreover, different sizes and types of ring oscillators are also tested. In addition, this work discusses potential countermeasures to mitigate the impact of the cross-board leakage. The results of this paper highlight the dangers of shared power supply units in local and cloud FPGAs, and therefore a fundamental need to rethink FPGA security for shared infrastructures.

show abstract

Countermeasures Against Voltage Attacks in Multi-tenant FPGAs

Moini,

Provelengios,

Holcomb

et al. 2023

Security of FPGA-Accelerated Cloud Computing Environments

View full text Add to dashboard Cite

Oscillator without a combinatorial loop and its threat to FPGA in data centre

Cited by 47 publications

References 4 publications

Reading Between the Dies: Cross-SLR Covert Channels on Multi-Tenant Cloud FPGAs

Reading Between the Dies: Cross-SLR Covert Channels on Multi-Tenant Cloud FPGAs

C³APSULe: Cross-FPGA Covert-Channel Attacks through Power Supply Unit Leakage

Countermeasures Against Voltage Attacks in Multi-tenant FPGAs

Contact Info

Product

Resources

About

Oscillator without a combinatorial loop and its threat to FPGA in data centre

Cited by 47 publications

References 4 publications

Reading Between the Dies: Cross-SLR Covert Channels on Multi-Tenant Cloud FPGAs

Reading Between the Dies: Cross-SLR Covert Channels on Multi-Tenant Cloud FPGAs

C3APSULe: Cross-FPGA Covert-Channel Attacks through Power Supply Unit Leakage

Countermeasures Against Voltage Attacks in Multi-tenant FPGAs

Contact Info

Product

Resources

About

C³APSULe: Cross-FPGA Covert-Channel Attacks through Power Supply Unit Leakage