TY - JOUR
T1 - Towards a New Thermal Monitoring Based Framework for Embedded CPS Device Security
AU - Patel, Naman
AU - Krishnamurthy, Prashanth
AU - Amrouch, Hussam
AU - Henkel, Jorg
AU - Shamouilian, Michael
AU - Karri, Ramesh
AU - Khorrami, Farshad
N1 - Funding Information:
This work was supported in part by the U.S. Office of Naval Research under Awards N00014-15-1-2182, N00014-17-1-2006, and N00014-18-1-2672, and by Boeing.
Publisher Copyright:
© 2004-2012 IEEE.
PY - 2022
Y1 - 2022
N2 - This article introduces a thermal side channel as a proxy for the behavior of embedded processors to detect changes in the behavior in a cyber-physical system. Such changes may be due to software/hardware attacks and altered processors. Since control system processes are periodic computations, the thermal side channels exhibit a temporal pattern. This enables the detection of altered code and changed device characteristics. We present a machine learning approach to estimate the activity of the embedded device from the time sequence of thermal images and show that deviations from expected behavior can be detected. The approach is validated on a multi-core processor running a periodic computational code. The infrared imager collects thermal imagery from the processor, which is cooled from the backside. Instead of an external imager, one can deploy a finite number of on-chip temperature sensors. This article shows that integrating on-chip temperature sensors allows robust real-time monitoring of the processor behavior. Finally, we offer a machine learning approach to optimally place the on-chip sensors to aid detection.
AB - This article introduces a thermal side channel as a proxy for the behavior of embedded processors to detect changes in the behavior in a cyber-physical system. Such changes may be due to software/hardware attacks and altered processors. Since control system processes are periodic computations, the thermal side channels exhibit a temporal pattern. This enables the detection of altered code and changed device characteristics. We present a machine learning approach to estimate the activity of the embedded device from the time sequence of thermal images and show that deviations from expected behavior can be detected. The approach is validated on a multi-core processor running a periodic computational code. The infrared imager collects thermal imagery from the processor, which is cooled from the backside. Instead of an external imager, one can deploy a finite number of on-chip temperature sensors. This article shows that integrating on-chip temperature sensors allows robust real-time monitoring of the processor behavior. Finally, we offer a machine learning approach to optimally place the on-chip sensors to aid detection.
KW - Side-channel analysis and countermeasures
KW - cyber-physical systems
KW - embedded systems security
KW - machine learning
KW - real-time monitoring
KW - software and hardware attacks
KW - temperature sensors
KW - thermal side channel
UR - http://www.scopus.com/inward/record.url?scp=85123609503&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85123609503&partnerID=8YFLogxK
U2 - 10.1109/TDSC.2020.2973959
DO - 10.1109/TDSC.2020.2973959
M3 - Article
AN - SCOPUS:85123609503
SN - 1545-5971
VL - 19
SP - 524
EP - 536
JO - IEEE Transactions on Dependable and Secure Computing
JF - IEEE Transactions on Dependable and Secure Computing
IS - 1
ER -