Trust in FPGA-accelerated Cloud Computing

Turan, Furkan; Verbauwhede, Ingrid

doi:10.1145/3419100

Cited by 25 publications

(7 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Additionally, surveys are explicitly related to the security concerns of using FPGAs in the cloud, focusing, for instance, on authentication and information security questions concerning the different types of attacks that can occur in cloud computing [6], [36], [43]. Furthermore, in recent years cloud infrastructure and operational challenges related to finding the right abstraction for FPGAs have led to security and trust problems and, consequently, works such as [15], [44] make vulnerability and scalability comparisons concerning trusted platform module (TPM) and Trusted Cryptography Module (TCM). Finally, TEE to protect cloud/edge on Internet of Things (IoT) applications can be found in [45].…”

Section: Fpgas In Cloud Computing and Securitymentioning

confidence: 99%

“…And, on the other hand, to discuss the state-ofthe-art in providing trusted execution with FPGAs and the opportunities novel TEE-enabled applications bring to the use of FPGA accelerators for computing. There have been several earlier surveys on the relationship between FPGAs and security [15], and what we provide with this short, timely survey is the additional exploration of the emerging applications of the last five years in the cloud and the edge. Of course, to understand the challenges at hand, we provide an overview of some of the topics already addressed in previous surveys.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Trusted Computing Solutions Using FPGAs

2023

View full text Add to dashboard Cite

Ensuring the security and privacy of computation and data management in the cloud and edge is an ever-important requirement. There are several working solutions today for trusted computing with general purpose processors, for instance, Intel SGX and ARM TrustZone. However, with the widespread commercial adoption of specialized hardware accelerators in the cloud and at the edge, most importantly FPGAs, two questions emerge: 1) How secure are they against threats? and 2) How could FPGAs be utilized for more efficient trusted computing? In this survey, we investigate these two questions precisely. Even though there have been numerous surveys in the past on the security of FPGAs, we believe it is timely to study the space of related work again, given the large number of data-centric applications aimed at targeting trusted execution environments that have recently appeared. Therefore, in addition to presenting an overview of state of the art, we also highlight some opportunities for FPGAs in the context of providing efficient trusted computation.

show abstract

Section: Fpgas In Cloud Computing and Securitymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Survey of Trusted Computing Solutions Using FPGAs

2023

View full text Add to dashboard Cite

show abstract

“…Moreover, the adoption of HLS introduces a vulnerability where attackers can clandestinely insert bug functionalities, such as hardware trojans, at a higher abstraction level within the design. On cloud-based FPGAs, trojans pose significant risks, potentially leaking sensitive information, inducing malfunctions in hardware design, tampering with computations or data, or maliciously altering underlying hardware [22,29,56]. Techniques like those described in [50] have been developed to detect trojans in FPGA designs at the IP and synthesis levels.…”

Section: Introductionmentioning

confidence: 99%

“…Vulnerabilities within third party HLS IPs might arise during the design phase, presenting similarities to security challenges encountered in untrusted electronics supply chains and the insertion of Trojans in pre-silicon hardware. Security researchers have proposed numerous ways to test and validate cloud-based IPs [6,7,56,64].…”

Section: Introductionmentioning

confidence: 99%

GreyConE: Greybox Fuzzing + Concolic Execution Guided Test Generation for High Level Designs

Debnath

Chowdhury

Saha

et al. 2022

2022 IEEE International Test Conference (ITC)

View full text Add to dashboard Cite

High-Level Synthesis (HLS) has transformed the development of complex Hardware IPs (HWIP) by offering abstraction and configurability through languages like SystemC/C++, particularly for Field Programmable Gate Array (FPGA) accelerators in high-performance and cloud computing contexts. These IPs can be synthesized for different FPGA boards in cloud, offering compact area requirements and enhanced flexibility. HLS enables designs to execute directly on ARM processors within modern FPGAs without the need for Register Transfer Level (RTL) synthesis, thereby conserving FPGA resources. While HLS offers flexibility and efficiency, it also introduces potential vulnerabilities such as the presence of hidden circuitry, including the possibility of hosting hardware trojans within designs.In cloud environments, these vulnerabilities pose significant security concerns such as leakage of sensitive data, IP functionality disruption and hardware damage, necessitating the development of robust testing frameworks. This research presents an advanced testing approach for HLS-developed cloud IPs, specifically targeting hidden malicious functionalities that may exist in rare conditions within the design. The proposed method leverages selective instrumentation, combining greybox fuzzing and concolic execution techniques to enhance test generation capabilities. Evaluation conducted on various HLS benchmarks, possessing characteristics of FPGA-based cloud IPs with embedded cloud related threats, demonstrates the effectiveness of our framework in detecting trojans and rare scenarios, showcasing improvements in coverage, time efficiency, memory usage, and testing costs compared to existing methods.

show abstract

“…We examine RowHammer, fault injection, and SCA attacks. Unlike other surveys, which focus on only one compute unit, one exploit type, or one threat model [15,158,179,188,211,232,233,237], we include in our examination all three computing units and take into consideration the heterogeneous system architecture and deployment models.…”

mentioning

confidence: 99%

Electrical-Level Attacks on CPUs, FPGAs, and GPUs: Survey and Implications in the Heterogeneous Era

Mahmoud

Lenders²,

Stojilović

2022

ACM Comput. Surv.

View full text Add to dashboard Cite

Given the need for efficient high-performance computing, computer architectures combining central processing units (CPUs), graphics processing units (GPUs), and field-programmable gate arrays (FPGAs) are currently prevalent. However, each of these components suffers from electrical-level security risks. Moving to heterogeneous systems, with the potential of multitenancy, it is essential to understand and investigate how the security vulnerabilities of individual components may affect the system as a whole. In this work, we provide a survey on the electrical-level attacks on CPUs, FPGAs, and GPUs. Additionally, we discuss whether these attacks can extend to heterogeneous systems and highlight open research directions for ensuring the security of heterogeneous computing systems in the future.

show abstract

Trust in FPGA-accelerated Cloud Computing

Cited by 25 publications

References 50 publications

A Survey of Trusted Computing Solutions Using FPGAs

A Survey of Trusted Computing Solutions Using FPGAs

GreyConE: Greybox Fuzzing + Concolic Execution Guided Test Generation for High Level Designs

Electrical-Level Attacks on CPUs, FPGAs, and GPUs: Survey and Implications in the Heterogeneous Era

Contact Info

Product

Resources

About