Hardware trojan cyber-physical threats to supply chains

Kurt Sauer, Michael David, Kouichi Sakurai

研究成果: Chapter in Book/Report/Conference proceedingConference contribution

抄録

Many actors are involved in the supply chain processes needed to produce an integrated circuit. Any one of these individuals or groups could make illicit copies of semiconductor IP during their work. In addition, chips could be intentionally compromised during the design process, before they are even manufactured. If placed into the design with sufficient skill, these built-in vulnerabilities would be extremely difficult to detect during testing. Moreover, they could lay dormant, only to be triggered months or years later to disrupt or exfiltrate data from a system containing the compromised chip. This paper primarily reviews the risks posed by design tampering, looks at threat actors and their possible activities, threat models for these activities, and possible mitigations. It assesses the impacts of security composability theory on risk management and practical design, and tries to identify the greatest threat. Our proposal is to contrast Trojan insertion risks at the two ends of the spectrum in early design phase: first at the highest abstraction level, the RTL description, and second at the layout level, in GDSII. A key question for the future is how to develop security architectures that are Trojan tolerant, meaning that other layers of protective controls exist to protect the overall system from malfunctioning at a level commensurate with the risk tolerance of the system. The views expressed do not reflect the official policy or position of the National Intelligence University, the Department of Defense, the U.S. Intelligence Community, or the U.S. Government.

本文言語英語
ホスト出版物のタイトルProceedings of the 13th International Conference on Cyber Warfare and Security, ICCWS 2018
編集者John S. Hurley, Jim Q. Chen
出版社Academic Conferences and Publishing International Limited
ページ448-455
ページ数8
ISBN(電子版)9781911218746
出版ステータス出版済み - 1 1 2018
イベント13th International Conference on Cyber Warfare and Security, ICCWS 2018 - Washington, 米国
継続期間: 3 8 20183 9 2018

出版物シリーズ

名前Proceedings of the 13th International Conference on Cyber Warfare and Security, ICCWS 2018
2018-March

その他

その他13th International Conference on Cyber Warfare and Security, ICCWS 2018
国/地域米国
CityWashington
Period3/8/183/9/18

All Science Journal Classification (ASJC) codes

  • コンピュータ サイエンスの応用
  • コンピュータ ネットワークおよび通信
  • 安全性、リスク、信頼性、品質管理

フィンガープリント

「Hardware trojan cyber-physical threats to supply chains」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル