SSEL: An Extensible Specification Language for SoC Security

Raj, Kshitij; Hegde, Arrush; Nath, Atul Prasad Deb; Bhunia, Swarup; Ray, Sandip

doi:10.1109/asianhost53231.2021.9699640

Cited by 1 publication

(2 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Impact on IC trustworthiness: This issue is further compounded when the insufficient specification is passed down the implementation flow, where optimizations or incorrect implementation by the EDA tools may create new vulnerabilities [138]. The exploitation of these vulnerabilities does not only impact security itself, e.g., by leaking the cryptographic keys or sensitive data, it can also negatively impact other attributes of trustworthiness, e.g., by exploiting the vulnerabilities to cause a safety hazard in safety-critical applications.…”

Section: Insufficient Specification Of Security Measuresmentioning

confidence: 99%

“…Countermeasures: Potential countermeasures to this issue are formal approaches to executable specifications that can be easily traced throughout the development cycle. One such approach by Raj et al [138] is Security Specification Language (SSEL), which enables the specification of protection mechanisms for various security threats. This is built on top of the programming language C, and security constructs are provided via an Application Programming Interface (API).…”

Section: Insufficient Specification Of Security Measuresmentioning

confidence: 99%

See 1 more Smart Citation

Trustworthy Integrated Circuits: From Safety to Security and Beyond

Rama,

Ayache,

Buchty

et al. 2024

IEEE Access

View full text Add to dashboard Cite

The trustworthiness of integrated circuits (ICs) has become increasingly important due to the ubiquitousness of ICs and the insecure nature of the current semiconductor supply chain. Throughout development and operation, ICs are exposed to several risks that can arise from malicious actors or harsh operational conditions. Therefore, the question arises: Does the trustworthiness of an IC indicate its security only or other attributes beyond? Various disciplines may have a different understanding of what IC trustworthiness means. Thus, a compact and unified definition that provides its main overarching attributes is required. Such a definition would lead to a greater readiness to deal with emerging challenges. To define trustworthiness at IC level, we identify the minimum number of attributes required to cover the various perspectives of development, focusing on correct functionality, reliability, security, and functional safety. Subsequently, we review and provide a structured description of identified critical pre-silicion issues that can negatively impact the defined attributes. Besides academic literature, standards, and industry-relevant publications, we consider industry experts' opinions to achieve the maximum possible coverage of our topical review. We also provide an overview and analysis of several existing evaluation methodologies of the respective trustworthiness attributes, as evaluating the discussed issues is another important aspect for achieving trustworthiness. Our findings highlight the need for a comprehensive and universally applicable framework to evaluate the trustworthiness of ICs.

show abstract

Section: Insufficient Specification Of Security Measuresmentioning

confidence: 99%

Section: Insufficient Specification Of Security Measuresmentioning

confidence: 99%