Practical, Lightweight Secure Inclusion of Third-Party Intellectual Property

Author

Waksman, A. ; Sethumadhavan, S. ; Eum, J.

Author_Institution

Dept. of Comput. Sci., Columbia Univ., New York, NY, USA

Volume

30

Issue

2

fYear

2013

fDate

Apr-13

Firstpage

8

Lastpage

16

Abstract

The security of computing systems relies on trust in hardware. This trust can no longer be assumed due to vulnerabilities in hardware designs. Security methodologies have been proposed for mitigating these threats, offering a variety of security guarantees and wide variance in terms of design-time and runtime costs. From an engineering standpoint it is not clear which of the plethora of solutions should be applied or how they should be implemented. We develop an engineering process for the practical and lightweight inclusion of untrusted third-party hardware design components. We find that by combining previously proposed techniques, we are able to build a microcontroller that uses each design module as if it were untrusted third-party intellectual property. Our experience supports the surprising claim that implementing a chip with untrusted components is not significantly more difficult than implementing a regular one.

Keywords

industrial property; integrated circuit design; microcontrollers; trusted computing; chip; computing system; design module; design-time cost; engineering process; hardware trust; lightweight secure inclusion; microcontroller; runtime cost; security guarantees; security methodology; threat mitigation; untrusted third-party hardware design component; untrusted third-party intellectual property; Algorithm design and analysis; Encryption; Intellectual property; Microcontrollers; Network security; Subspace constraints; Trojan horses;

fLanguage

English

Journal_Title

Design & Test, IEEE

Publisher

ieee

ISSN

2168-2356

Type

jour

DOI

10.1109/MDT.2013.2247458

Filename

6462024