TY - GEN
T1 - ShapeShifter
T2 - 29th IEEE International Symposium on On-Line Testing and Robust System Design, IOLTS 2023
AU - Ahmadi, Mahya Morid
AU - Alrahis, Lilas
AU - Sinanoglu, Ozgur
AU - Shafique, Muhammad
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - Cloud service providers are interested in deploying multi-tenant Field-Programmable Gate Arrays (FPGAs) for virtualized computation platforms. A primary concern towards such shared FPGA platforms is ensuring the security of critical applications (such as encryption cores) against hardware-based attacks, such as remote power Side-Channel Attacks (SCAs) intended to steal secret assets like encryption keys. To address this issue, we propose ShapeShifter, a novel defense methodology based on design diversity that generates isofunctional variants of the target application at the design stage using different synthesis, placement, and routing procedures. ShapeShifter leverages the dynamic partial reconfiguration feature of modern FPGAs to exchange the variants at run-time, causing dynamic variations in the power trace (vertical obfuscation) and introducing misalignment in the time domain (horizontal obfuscation) to thwart SCAs. ShapeShifter successfully thwarts the Correlation Power Analysis (CPA) attack on an Advanced Encryption Standard (AES) implementation, ensuring unsuccessful key byte recovery for up to 10× more traces. It also decreases the CPA value by 0.69×, reducing the attacker's confidence in key recovery.
AB - Cloud service providers are interested in deploying multi-tenant Field-Programmable Gate Arrays (FPGAs) for virtualized computation platforms. A primary concern towards such shared FPGA platforms is ensuring the security of critical applications (such as encryption cores) against hardware-based attacks, such as remote power Side-Channel Attacks (SCAs) intended to steal secret assets like encryption keys. To address this issue, we propose ShapeShifter, a novel defense methodology based on design diversity that generates isofunctional variants of the target application at the design stage using different synthesis, placement, and routing procedures. ShapeShifter leverages the dynamic partial reconfiguration feature of modern FPGAs to exchange the variants at run-time, causing dynamic variations in the power trace (vertical obfuscation) and introducing misalignment in the time domain (horizontal obfuscation) to thwart SCAs. ShapeShifter successfully thwarts the Correlation Power Analysis (CPA) attack on an Advanced Encryption Standard (AES) implementation, ensuring unsuccessful key byte recovery for up to 10× more traces. It also decreases the CPA value by 0.69×, reducing the attacker's confidence in key recovery.
UR - http://www.scopus.com/inward/record.url?scp=85171627192&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85171627192&partnerID=8YFLogxK
U2 - 10.1109/IOLTS59296.2023.10224883
DO - 10.1109/IOLTS59296.2023.10224883
M3 - Conference contribution
AN - SCOPUS:85171627192
T3 - Proceedings - 2023 IEEE 29th International Symposium on On-Line Testing and Robust System Design, IOLTS 2023
BT - Proceedings - 2023 IEEE 29th International Symposium on On-Line Testing and Robust System Design, IOLTS 2023
A2 - Savino, Alessandro
A2 - Maniatakos, Mihalis
A2 - di Carlo, Stefano
A2 - Gizopoulos, Dimitris
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 3 July 2023 through 5 July 2023
ER -