SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption

Florian Unterstein; Nisha Jacob; Neil Hanley; Chongyan Gu; Johann Heyzl

doi:10.1145/3338508.3359573

SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption

Florian Unterstein, Nisha Jacob, Neil Hanley, Chongyan Gu, Johann Heyzl

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Citations (Scopus)

516 Downloads (Pure)

Abstract

FPGA system on chips (SoCs) are ideal computing platforms for edge devices in applications which require high performance through hardware acceleration and updatability due to long operation in the field. A secure update of hardware functionality can in general be achieved by using built-in cryptographic engines and provided secretkey storage. However, reported examples have shown that suchcryptographic engines may become insecure against side-channel attacks at any later point in time. This leaves already deployed systems vulnerable without any clear mitigation options. To solve this, we propose a comprehensive concept that uses an alternative and side-channel protected cryptographic engine within the FPGA logic instead of the built-in one for the crucial task of bit streamd ecryption. Remarkably this concept even allows to update the cryptographic engine itself. As proof of concept, we describe anapplication to the Xilinx Zynq-7020 FPGA SoC in detail using a leakage resilient decryption engine. The lack of accessible secretkey storage poses a significant challenge and requires the use of a physical unclonable function (PUF) to generate a device intrinsic secret within the FPGA logic. At the same time this means that no manufacturer provided secret key storage or cryptography is required anymore; only a public key for signature verification of the first stage bootloader and initial static bit stream. We provide empirical results proving the side-channel security of the protected cryptographic engine as well as an evaluation of the PUF quality.The full design and source code is made available to encourage further research in this direction.

Original language	English
Title of host publication	ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop
Publisher	Association for Computing Machinery
Pages	45-53
Number of pages	9
ISBN (Electronic)	9781450368391
ISBN (Print)	978-1-4503-6839-1
DOIs	https://doi.org/10.1145/3338508.3359573 https://doi.org/10.1145/3338508.3359573
Publication status	Published - 15 Nov 2019
Event	3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop, ASHES 2019, a Post-Conference Satellite Workshop of the ACM Conference on Computer and Communications Security, CCS 2019 - London, United Kingdom Duration: 15 Nov 2019 → …

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Conference

Conference	3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop, ASHES 2019, a Post-Conference Satellite Workshop of the ACM Conference on Computer and Communications Security, CCS 2019
Country/Territory	United Kingdom
City	London
Period	15/11/2019 → …

Keywords

AES
Leakage resilience
PUF
Secure boot
Zynq

ASJC Scopus subject areas

Software
Computer Networks and Communications

Access to Document

10.1145/3338508.3359573Licence: Unspecified
10.1145/3338508.3359573

SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption
Copyright 2019 ACM. This work is made available online in accordance with the publisher’s policies. Please refer to any applicable terms of use of the publisher.
Accepted author manuscript, 931 KBLicence: Unspecified

Cite this

Unterstein, F., Jacob, N., Hanley, N., Gu, C., & Heyzl, J. (2019). SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption. In ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop (pp. 45-53). (Proceedings of the ACM Conference on Computer and Communications Security). Association for Computing Machinery. https://doi.org/10.1145/3338508.3359573, https://doi.org/10.1145/3338508.3359573

@inproceedings{eea5a2881944439fac8fd9f14d069da1,

title = "SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption",

abstract = "FPGA system on chips (SoCs) are ideal computing platforms for edge devices in applications which require high performance through hardware acceleration and updatability due to long operation in the field. A secure update of hardware functionality can in general be achieved by using built-in cryptographic engines and provided secretkey storage. However, reported examples have shown that suchcryptographic engines may become insecure against side-channel attacks at any later point in time. This leaves already deployed systems vulnerable without any clear mitigation options. To solve this, we propose a comprehensive concept that uses an alternative and side-channel protected cryptographic engine within the FPGA logic instead of the built-in one for the crucial task of bit streamd ecryption. Remarkably this concept even allows to update the cryptographic engine itself. As proof of concept, we describe anapplication to the Xilinx Zynq-7020 FPGA SoC in detail using a leakage resilient decryption engine. The lack of accessible secretkey storage poses a significant challenge and requires the use of a physical unclonable function (PUF) to generate a device intrinsic secret within the FPGA logic. At the same time this means that no manufacturer provided secret key storage or cryptography is required anymore; only a public key for signature verification of the first stage bootloader and initial static bit stream. We provide empirical results proving the side-channel security of the protected cryptographic engine as well as an evaluation of the PUF quality.The full design and source code is made available to encourage further research in this direction.",

keywords = "AES, Leakage resilience, PUF, Secure boot, Zynq",

author = "Florian Unterstein and Nisha Jacob and Neil Hanley and Chongyan Gu and Johann Heyzl",

year = "2019",

month = nov,

day = "15",

doi = "10.1145/3338508.3359573",

language = "English",

isbn = "978-1-4503-6839-1",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

publisher = "Association for Computing Machinery",

pages = "45--53",

booktitle = "ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop",

address = "United States",

note = "3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop, ASHES 2019, a Post-Conference Satellite Workshop of the ACM Conference on Computer and Communications Security, CCS 2019 ; Conference date: 15-11-2019",

}

Unterstein, F, Jacob, N, Hanley, N , Gu, C & Heyzl, J 2019, SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption. in ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop. Proceedings of the ACM Conference on Computer and Communications Security, Association for Computing Machinery, pp. 45-53, 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop, ASHES 2019, a Post-Conference Satellite Workshop of the ACM Conference on Computer and Communications Security, CCS 2019, London, United Kingdom, 15/11/2019. https://doi.org/10.1145/3338508.3359573, https://doi.org/10.1145/3338508.3359573

SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption. / Unterstein, Florian; Jacob, Nisha; Hanley, Neil et al.
ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop. Association for Computing Machinery, 2019. p. 45-53 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption

AU - Unterstein, Florian

AU - Jacob, Nisha

AU - Hanley, Neil

AU - Gu, Chongyan

AU - Heyzl, Johann

PY - 2019/11/15

Y1 - 2019/11/15

N2 - FPGA system on chips (SoCs) are ideal computing platforms for edge devices in applications which require high performance through hardware acceleration and updatability due to long operation in the field. A secure update of hardware functionality can in general be achieved by using built-in cryptographic engines and provided secretkey storage. However, reported examples have shown that suchcryptographic engines may become insecure against side-channel attacks at any later point in time. This leaves already deployed systems vulnerable without any clear mitigation options. To solve this, we propose a comprehensive concept that uses an alternative and side-channel protected cryptographic engine within the FPGA logic instead of the built-in one for the crucial task of bit streamd ecryption. Remarkably this concept even allows to update the cryptographic engine itself. As proof of concept, we describe anapplication to the Xilinx Zynq-7020 FPGA SoC in detail using a leakage resilient decryption engine. The lack of accessible secretkey storage poses a significant challenge and requires the use of a physical unclonable function (PUF) to generate a device intrinsic secret within the FPGA logic. At the same time this means that no manufacturer provided secret key storage or cryptography is required anymore; only a public key for signature verification of the first stage bootloader and initial static bit stream. We provide empirical results proving the side-channel security of the protected cryptographic engine as well as an evaluation of the PUF quality.The full design and source code is made available to encourage further research in this direction.

AB - FPGA system on chips (SoCs) are ideal computing platforms for edge devices in applications which require high performance through hardware acceleration and updatability due to long operation in the field. A secure update of hardware functionality can in general be achieved by using built-in cryptographic engines and provided secretkey storage. However, reported examples have shown that suchcryptographic engines may become insecure against side-channel attacks at any later point in time. This leaves already deployed systems vulnerable without any clear mitigation options. To solve this, we propose a comprehensive concept that uses an alternative and side-channel protected cryptographic engine within the FPGA logic instead of the built-in one for the crucial task of bit streamd ecryption. Remarkably this concept even allows to update the cryptographic engine itself. As proof of concept, we describe anapplication to the Xilinx Zynq-7020 FPGA SoC in detail using a leakage resilient decryption engine. The lack of accessible secretkey storage poses a significant challenge and requires the use of a physical unclonable function (PUF) to generate a device intrinsic secret within the FPGA logic. At the same time this means that no manufacturer provided secret key storage or cryptography is required anymore; only a public key for signature verification of the first stage bootloader and initial static bit stream. We provide empirical results proving the side-channel security of the protected cryptographic engine as well as an evaluation of the PUF quality.The full design and source code is made available to encourage further research in this direction.

KW - AES

KW - Leakage resilience

KW - PUF

KW - Secure boot

KW - Zynq

UR - http://www.scopus.com/inward/record.url?scp=85075851766&partnerID=8YFLogxK

U2 - 10.1145/3338508.3359573

DO - 10.1145/3338508.3359573

M3 - Conference contribution

AN - SCOPUS:85075851766

SN - 978-1-4503-6839-1

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 45

EP - 53

BT - ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop

PB - Association for Computing Machinery

T2 - 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop, ASHES 2019, a Post-Conference Satellite Workshop of the ACM Conference on Computer and Communications Security, CCS 2019

Y2 - 15 November 2019

ER -

Unterstein F, Jacob N, Hanley N , Gu C, Heyzl J. SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption. In ASHES 2019 - Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop. Association for Computing Machinery. 2019. p. 45-53. (Proceedings of the ACM Conference on Computer and Communications Security). doi: 10.1145/3338508.3359573, 10.1145/3338508.3359573

SCA Secure and Updatable Crypto Engines for FPGA SoC Bitstream Decryption

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this