Security Against Data-Sniffing and Alteration Attacks in IJTAG

Rana Elnaggar; Ramesh Karri; Krishnendu Chakrabarty

doi:10.1109/TCAD.2020.3019167

Security Against Data-Sniffing and Alteration Attacks in IJTAG

Rana Elnaggar, Ramesh Karri, Krishnendu Chakrabarty

Research output: Contribution to journal › Article

Abstract

The IEEE Std. 1687 (IJTAG) facilitates access to on-chip instruments in complex system-on-chip designs. However, a major security vulnerability in IJTAG has yet to be addressed. IJTAG supports the integration of tapped and wrapped instruments at the IP provider with hidden test-data registers (TDRs). The instruments with hidden TDRs can alter and steal the data that is shifted through them. These attacks are called “data-alteration” and “data-sniffing” attacks, respectively. We propose the addition of shadow test-data registers and information-flow tracking logic to protect the shifted in test data from illegitimate alteration and leakage by malicious third-party IPs. We present two security architectures for IJTAG. The first architecture secures the IJTAG against data alteration and incurs no timing overhead. However, it does not secure IJTAG against data-sniffing attacks. The second architecture is an upgrade to the first architecture where we re-purpose the use of the shadow test-data registers and information-tracking logic to secure the IJTAG against both data-alteration and data-sniffing attacks. However, it incurs timing overhead. We present security proofs, simulation results, and the overheads associated with these countermeasures for various benchmarks. We also discuss the trade-offs in security and overhead between the two proposed architectures.

Original language	English (US)
Journal	IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems
DOIs	https://doi.org/10.1109/TCAD.2020.3019167
State	Accepted/In press - 2020

ASJC Scopus subject areas

Software
Computer Graphics and Computer-Aided Design
Electrical and Electronic Engineering

Access to Document

10.1109/TCAD.2020.3019167

Fingerprint Dive into the research topics of 'Security Against Data-Sniffing and Alteration Attacks in IJTAG'. Together they form a unique fingerprint.

Cite this

Elnaggar, R., Karri, R., & Chakrabarty, K. (Accepted/In press). Security Against Data-Sniffing and Alteration Attacks in IJTAG. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems. https://doi.org/10.1109/TCAD.2020.3019167

@article{5df05d26ddb74f97a9763b6f0a01b161,

title = "Security Against Data-Sniffing and Alteration Attacks in IJTAG",

abstract = "The IEEE Std. 1687 (IJTAG) facilitates access to on-chip instruments in complex system-on-chip designs. However, a major security vulnerability in IJTAG has yet to be addressed. IJTAG supports the integration of tapped and wrapped instruments at the IP provider with hidden test-data registers (TDRs). The instruments with hidden TDRs can alter and steal the data that is shifted through them. These attacks are called “data-alteration” and “data-sniffing” attacks, respectively. We propose the addition of shadow test-data registers and information-flow tracking logic to protect the shifted in test data from illegitimate alteration and leakage by malicious third-party IPs. We present two security architectures for IJTAG. The first architecture secures the IJTAG against data alteration and incurs no timing overhead. However, it does not secure IJTAG against data-sniffing attacks. The second architecture is an upgrade to the first architecture where we re-purpose the use of the shadow test-data registers and information-tracking logic to secure the IJTAG against both data-alteration and data-sniffing attacks. However, it incurs timing overhead. We present security proofs, simulation results, and the overheads associated with these countermeasures for various benchmarks. We also discuss the trade-offs in security and overhead between the two proposed architectures.",

author = "Rana Elnaggar and Ramesh Karri and Krishnendu Chakrabarty",

year = "2020",

doi = "10.1109/TCAD.2020.3019167",

language = "English (US)",

journal = "IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems",

issn = "0278-0070",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - JOUR

T1 - Security Against Data-Sniffing and Alteration Attacks in IJTAG

AU - Elnaggar, Rana

AU - Karri, Ramesh

AU - Chakrabarty, Krishnendu

PY - 2020

Y1 - 2020

N2 - The IEEE Std. 1687 (IJTAG) facilitates access to on-chip instruments in complex system-on-chip designs. However, a major security vulnerability in IJTAG has yet to be addressed. IJTAG supports the integration of tapped and wrapped instruments at the IP provider with hidden test-data registers (TDRs). The instruments with hidden TDRs can alter and steal the data that is shifted through them. These attacks are called “data-alteration” and “data-sniffing” attacks, respectively. We propose the addition of shadow test-data registers and information-flow tracking logic to protect the shifted in test data from illegitimate alteration and leakage by malicious third-party IPs. We present two security architectures for IJTAG. The first architecture secures the IJTAG against data alteration and incurs no timing overhead. However, it does not secure IJTAG against data-sniffing attacks. The second architecture is an upgrade to the first architecture where we re-purpose the use of the shadow test-data registers and information-tracking logic to secure the IJTAG against both data-alteration and data-sniffing attacks. However, it incurs timing overhead. We present security proofs, simulation results, and the overheads associated with these countermeasures for various benchmarks. We also discuss the trade-offs in security and overhead between the two proposed architectures.

AB - The IEEE Std. 1687 (IJTAG) facilitates access to on-chip instruments in complex system-on-chip designs. However, a major security vulnerability in IJTAG has yet to be addressed. IJTAG supports the integration of tapped and wrapped instruments at the IP provider with hidden test-data registers (TDRs). The instruments with hidden TDRs can alter and steal the data that is shifted through them. These attacks are called “data-alteration” and “data-sniffing” attacks, respectively. We propose the addition of shadow test-data registers and information-flow tracking logic to protect the shifted in test data from illegitimate alteration and leakage by malicious third-party IPs. We present two security architectures for IJTAG. The first architecture secures the IJTAG against data alteration and incurs no timing overhead. However, it does not secure IJTAG against data-sniffing attacks. The second architecture is an upgrade to the first architecture where we re-purpose the use of the shadow test-data registers and information-tracking logic to secure the IJTAG against both data-alteration and data-sniffing attacks. However, it incurs timing overhead. We present security proofs, simulation results, and the overheads associated with these countermeasures for various benchmarks. We also discuss the trade-offs in security and overhead between the two proposed architectures.

UR - http://www.scopus.com/inward/record.url?scp=85090214596&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85090214596&partnerID=8YFLogxK

U2 - 10.1109/TCAD.2020.3019167

DO - 10.1109/TCAD.2020.3019167

M3 - Article

AN - SCOPUS:85090214596

JO - IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

JF - IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

SN - 0278-0070

ER -