TY - GEN
T1 - CoPHEE
T2 - 2019 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2019
AU - Nabeel, Mohammed
AU - Ashraf, Mohammed
AU - Chielle, Eduardo
AU - Tsoutsos, Nektarios G.
AU - Maniatakos, Michail
N1 - Publisher Copyright:
© 2019 IEEE.
PY - 2019/5
Y1 - 2019/5
N2 - The recent disclosure of the Spectre and Meltdown side-channel vulnerabilities offers yet another example of modern computer architectures prioritizing performance optimizations over security and privacy. The devastating impact of data leakage, however, emphasizes the need for new processor designs that provide native support for data privacy using cryptography. In this paper, we report on a year-long effort to design, implement, fabricate, and validate CoPHEE: a novel co-processor design that mitigates data leakage risks using partially homomorphic encrypted execution. ASIC designs for encrypted execution impose unique challenges, such as the need for non-traditional arithmetic units (modular inverse, greatest common divisor), very wide datapaths (2048 bits), and the requirement for secure multiplexer units enabling general-purpose execution on encrypted values. Our fully-functional co-processor chip is fabricated in 65nm CMOS technology, and communicates to a main processor via UART. This paper offers an elaborate overview of all steps and design techniques in the ASIC development process, ranging from RTL design to fabrication and validation. We evaluate our co-processor using data-oblivious C++ benchmarks, while our RTL files are available in an open-source repository.
AB - The recent disclosure of the Spectre and Meltdown side-channel vulnerabilities offers yet another example of modern computer architectures prioritizing performance optimizations over security and privacy. The devastating impact of data leakage, however, emphasizes the need for new processor designs that provide native support for data privacy using cryptography. In this paper, we report on a year-long effort to design, implement, fabricate, and validate CoPHEE: a novel co-processor design that mitigates data leakage risks using partially homomorphic encrypted execution. ASIC designs for encrypted execution impose unique challenges, such as the need for non-traditional arithmetic units (modular inverse, greatest common divisor), very wide datapaths (2048 bits), and the requirement for secure multiplexer units enabling general-purpose execution on encrypted values. Our fully-functional co-processor chip is fabricated in 65nm CMOS technology, and communicates to a main processor via UART. This paper offers an elaborate overview of all steps and design techniques in the ASIC development process, ranging from RTL design to fabrication and validation. We evaluate our co-processor using data-oblivious C++ benchmarks, while our RTL files are available in an open-source repository.
KW - ASIC
KW - Data Privacy
KW - Encrypted Execution
KW - Hardware Root-of-Trust
KW - Partially-Homomorphic Encryption
UR - http://www.scopus.com/inward/record.url?scp=85068804669&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85068804669&partnerID=8YFLogxK
U2 - 10.1109/HST.2019.8741036
DO - 10.1109/HST.2019.8741036
M3 - Conference contribution
AN - SCOPUS:85068804669
T3 - Proceedings of the 2019 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2019
SP - 131
EP - 140
BT - Proceedings of the 2019 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2019
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 6 May 2019 through 10 May 2019
ER -