TOTAL: TRNG On-the-fly Testing for Attack Detection using Lightweight Hardware

Yang, Bohan; Rožić, Vladimir; Mentens, Nele; Dehaene, Wim; Verbauwhede, Ingrid

doi:10.3850/9783981537079_0284

Cited by 23 publications

(12 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The first security primitive that has been monitored with a dedicated hardware watchdog is a true random number generator (TRNG): to ensure that the sequences produced by TRNGs respect strict statistical properties, Yang et al [17] designed on-the-fly statistical tests suitable for hardware implementation on FPGAs. Checking the statistical properties of the results has also been proposed to counteract fault attacks on other cryptographic primitives, such as lattice based ones: Howe et al [6] use a battery of statistical tests to verify if the distribution produced by the sampler is the expected one (Gaussian or binomial).…”

Section: State Of the Artmentioning

confidence: 99%

“…Ensuring that a security primitive works as expected requires monitoring during its operation, preferably directly on the host device. For instance, one can monitor the statistical properties of random number generators [17] or samplers in latticebased constructions [6]; if they are not as expected, one can suspect that the device has suffered from tampering or malfunctioning.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Built-in Self-Evaluation of First-Order Power Side-Channel Leakage for FPGAs

Glamočanin

Coulon

Regazzoni

et al. 2020

Proceedings of the 2020 ACM/SIGDA International Symposium on Field-Programmable Gate Arrays

View full text Add to dashboard Cite

Embedded and cyber-physical systems are pervading all aspects of our lives, including sensitive and critical ones. As a result, they are an alluring target for cyber attacks. These systems, whose implementation is often based on reconfigurable hardware, are typically deployed in places accessible to attackers. Therefore, they require protection against tampering and side-channel attacks. However, a side-channel resistant implementation of a security primitive is not sufficient, as it can be weakened by an adversary, aging, or environmental factors. To detect this, legitimate users should be able to evaluate the side-channel resistance of their systems not only when deploying them for the first time, but also during their entire service life. The most widespread and de facto standard methodology for measuring power side-channel leakage uses Welch's t-test. In practice, collecting the data for the t-test requires physical access to the device, a device-specific test setup, and the equipment for measuring the power consumption during device operation. Consequently, only a small number of cyber-physical systems deployed in the field can be tested this way and the tests to reevaluate the device resistance to side-channel attacks cannot be easily repeated. To address these issues, we present a design and an FPGA implementation of a built-in test for self-evaluation of the resistance to first-order power side-channel attacks. Once our test is triggered, the FPGA measures its own internal power-supply voltage and computes the t-test statistic in real time. Experimental results on two different implementations of the AES-128 algorithm demonstrate that the self-evaluation test is very reliable. We believe that this work is an important step towards the development of security sensors for the next generation of safe and robust cyber-physical systems. CCS CONCEPTS • Hardware → Reconfigurable logic and FPGAs; • Security and privacy → Tamper-proof and tamper-resistant designs; Sidechannel analysis and countermeasures.

show abstract

Section: State Of the Artmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Built-in Self-Evaluation of First-Order Power Side-Channel Leakage for FPGAs

Glamočanin

Coulon

Regazzoni

et al. 2020

Proceedings of the 2020 ACM/SIGDA International Symposium on Field-Programmable Gate Arrays

View full text Add to dashboard Cite

show abstract

“…They are most commonly used for generation of secret session keys, challenges, salts, nonces and padding values. The entropy source is the core component of TRNGs and relies on unpredictable physical events in order to produce unpredictable raw bits [2]. However, entropy sources are also very sensitive to external perturbations, making them an ideal target for the attacker of the crypto system.…”

Section: Introductionmentioning

confidence: 99%

Lightweight Prediction-Based Tests for On-Line Min-Entropy Estimation

Grujić

Rožić

Yang

et al. 2017

IEEE Embedded Syst. Lett.

Self Cite

View full text Add to dashboard Cite

Abstract-Health tests (on-the-fly tests) play an important role in true random number generators because they are used to assess the quality of the bits produced by entropy source and to raise an alert when failures or attacks are detected. Most of classical tests are implemented as statistical tests. A set of new health tests based on predictors was presented by NIST (National Institute of Standards and Technology) in CHES 2015. These off-line tests attempt to predict the next output of the entropy source by trying to learn the patterns that the previously produced sequence of bits may possess. We provide the first integrated lightweight implementation of prediction-based tests for min-entropy estimation and verify their validity.Index Terms-Field-programmable gate arrays (FPGA), minentropy estimation, True random number generators (TRNG).

show abstract

“…First testing proposals only checked the statistical properties of the final output [4]. Lately, some proposals testing the entropy source [6,8] or on-the-fly tests for attack detection [9] have been presented in the literature. The quality of the generator output is closely related to the quality of the source of randomness and to the randomness extraction method employed.…”

Section: On-line Testsmentioning

confidence: 99%

“…Among the most interesting proposals, in [7,8] the entropy rate is assessed by measuring some physical parameters of the entropy source. An interesting recent on-the-fly test based on the attack effects has been presented in [9]. The results from these tests are typically used to decide whether to stop the generation of random numbers when some degradation in the quality of the output is detected.…”

Section: Introductionmentioning

confidence: 99%

Dynamic control of entropy and power consumption in TRNGs for IoT applications

Martín

Heredia

Entrena

2018

IEICE Electron. Express

View full text Add to dashboard Cite

In this article we present a study about how to obtain a trade-off between two important metrics for IoT systems-Security vs Power Consumption. More specifically, we have studied how the min-entropy of two True-Random number generators can be adjusted dynamically in order to reduce the power consumption while guaranteeing the integrity of the system. To that end, we make use of some statistical tests that are typically used to measure the quality of the RNGs. Clock-gating and enable-gating are the selected techniques to reduce the power consumption.

show abstract

TOTAL: TRNG On-the-fly Testing for Attack Detection using Lightweight Hardware

Cited by 23 publications

References 14 publications

Built-in Self-Evaluation of First-Order Power Side-Channel Leakage for FPGAs

Built-in Self-Evaluation of First-Order Power Side-Channel Leakage for FPGAs

Lightweight Prediction-Based Tests for On-Line Min-Entropy Estimation

Dynamic control of entropy and power consumption in TRNGs for IoT applications

Contact Info

Product

Resources

About