liu genxian,wang haixia,liu zhenyu,wang dongsheng

DOI: https://doi.org/10.3778/j.issn.1002-8331.1403-0022

2014-01-01

Abstract:Embedded systems in high security-sensitive areas are susceptible to various types of attacks, including stealing passwords, tampering data and offline analysis. Especially, the hardware-level attacks often result in significant losses to the users. In order to defend the above attacks, the off-chip memory is encrypted and authenticated through AES-GCM algorithm. This scheme writes data after encryption, decrypt and authenticate after read data. In addition, a function is built that scrambling password with page address to ensure the encryption strength. Finally LRU cache is introduced to improve its performance. The scheme is implemented on STM32F103 microprocessor platform in software and the feasibility of the system design is proved. The memory stress experiment shows that the system security is strengthened with 9% performance degradation.

Xian Zhang,Chao Zhang,Guangyu Sun,Jia Di,Tao Zhang

DOI: https://doi.org/10.1109/CASES.2013.6662530

2013-01-01

Abstract:Emerging non-volatile memories (NVMs) have been considered as promising alternatives of DRAM for future main memory design. The NVM main memory has advantages of low standby power, high density, and good scalability. Its non-volatility, however, induces a security design challenge that data retained in memory after power-off need to be protected from malicious attacks. Although several approaches have been proposed to solve this problem through data encryption, they have some limitations such as high design complexity and non-trivial timing/energy overhead. Moreover, these techniques decrease the lifetime of NVM main memory due to extra write operations caused by encryption. In order to overcome these limitations, we propose an efficient PAD-XOR based encryption scheme in this work. A novel PAD generator based on a randomizer and several sub-PAD tables is introduced. With the PAD generator, our encryption scheme can provide run-time data protection to all data in NVM memory with low timing and power overhead. In addition, the encryption process can co-operate with wear-leveling of NVM to reduce design complexity. More important, our encryption technique has no impact on lifetime because no extra writes are incurred. Experimental results demonstrate that, compared to prior approaches, our design can achieve the same security strength with substantial lower overhead in respect of timing, energy consumption, and design complexity.

Long Wang,Hui Zhao,Guoqiang Bai

DOI: https://doi.org/10.1109/edst.2007.4289808

2007-01-01

Abstract:The ever increasing demand for security in embedded systems such as smart cards has resulted in the need to provide cost-efficient hardware that can compute the public-key cryptography. Now, 8-bit microcontrollers still hold a considerable share of the low-cost embedded system market and dominate in the smart card industry. The performance of 8-bit microcontrollers is too inefficient to implement the necessary cryptography operations in software. In this paper we describe the feasibility of utilizing an public-key cryptographic coprocessor on an 8-bit microcontroller to get time and size trade-offs. The coprocessor flexibly supports both RSA with ranging from 256 bit to 2048 bit and ECC on GF(2(257)) field. In order to exploit the full potential of our coprocessor, We proposed a small direct memory access (DMA) to removing system-level performance bottlenecks caused by the transfer of data between coprocessor and external RAM. Considering performance and hardware cost, our design compares favorably with existing solutions.

Xuewen He,Li Du,Yuan Du

DOI: https://doi.org/10.1109/jiot.2024.3500781

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:In IoT real-time systems and edge computing applications, Memory Encryption Engines (MEEs) are used for real-time memory encryption to protect program code and sensitive data in NVMs and mitigate some side-channel attacks. However, for resource-constrained devices, it is a considerable challenge to realize a lightweight solution with low hardware overhead, high security, and flexible bit-width. This paper presents a lightweight full-memory encryption engine, called Data&Address Encryption (DAE), which employs hybrid data and address encryption to protect Non-volatile Memories (NVMs) on-the-fly with low logic latency, flexible width adaptation, and enhanced security in some aspects. The security analyses show that DAE performs effective mitigation in some side-channel attacks, such as Remanence attack, and provides better security than data-only ciphers in resisting the brute-force attack, etc. Evaluated with TSMC’s 40nm standard CMOS technology, 128-bit DAE has a lightweight feature of 8.703 KGates, which is only 5.46% of 128-bit Advanced Encryption Standard (AES-128), and performs a 5.8× throughput, a 105.9× area efficiency, and a 48.1× energy efficiency. In the experiments on SoC simulation and FPGA platform with an embedded RISC-V core, the results show that DAE causes little or no loss of system frequency and throughput.

Zhu Wang,Yan Yao,Xiaojun Tong,Qinghua Luo,Xiangyu Chen

DOI: https://doi.org/10.3390/s19010143

IF: 3.9

2019-01-01

Sensors

Abstract:Information security is the foundation for building trust between the Internet of Things (IoT) and its users. Due to the sharp increase of information quantity and the limitation of hardware resources, it is difficult to maintain the high performance of hardware equipment, while also enhancing information security. To solve the problem of high consumption and low flexibility of multiple cryptographic algorithms hardware implementation, we have designed the Dynamically Reconfigurable Encryption and Decryption System, which is based on Field Programmable Gate Array. Considering the functional requirements, the cryptographic algorithm reconfigurable module files stored in External Memory could be configured dynamically into the assigned on-chip Reconfigurable Partition, supported by Core Controller and the Reconfiguration Control Platform. The experiment results show that, compared with the Static Encryption and Decryption System, our design reduces the logic resources by more than 30% and completes the algorithm swapping at the configuration speed of 15,759.51 Bytes/ms. It indicates that our design could reduce logic resources consumption and improve utilization efficiency and system flexibility.

Mei Hong,Hui Guo

DOI: https://doi.org/10.1007/978-3-642-17569-5_36

2010-01-01

Abstract:This paper presents a security design for embedded systems that have a secure on-chip computing environment and an insecure off-chip memory. The design protects the confidentiality and integrity of data at a low cost on performance and memory consumption. We implemented the design based on the SimpleScalar simulation software. Our simulation on a set of benchmarks shows that very little overhead is incurred for on-chip memory, and the average overheads on performance and off-chip memory, are only 7.6% and 6.25%, respectively.

Zhun Zhang,Xiang Wang,Qiang Hao,Dongdong Xu,Jinlei Zhang,Jiakang Liu,Jinhui Ma

DOI: https://doi.org/10.3390/mi12050560

IF: 3.4

2021-05-15

Micromachines

Abstract:Dynamic data security in embedded systems is raising more and more concerns in numerous safety-critical applications. In particular, the data exchanges in embedded Systems-on-Chip (SoCs) using main memory are exposing many security vulnerabilities to external attacks, which will cause confidential information leakages and program execution failures for SoCs at key points. Therefore, this paper presents a security SoC architecture with integrating a four-parallel Advanced Encryption Standard-Galois/Counter Mode (AES-GCM) cryptographic accelerator for achieving high-efficiency data processing to guarantee data exchange security between the SoC and main memory against bus monitoring, off-line analysis, and data tampering attacks. The architecture design has been implemented and verified on a Xilinx Virtex-5 Field Programmable Gate Array (FPGA) platform. Based on evaluation of the cryptographic accelerator in terms of performance overhead, security capability, processing efficiency, and resource consumption, experimental results show that the parallel cryptographic accelerator does not incur significant performance overhead on providing confidentiality and integrity protections for exchanged data; its average performance overhead reduces to as low as 2.65% on typical 8-KB I/D-Caches, and its data processing efficiency is around 3 times that of the pipelined AES-GCM construction. The reinforced SoC under the data tampering attacks and benchmark tests confirms the effectiveness against external physical attacks and satisfies a good trade-off between high-efficiency and hardware overhead.

chemistry, analytical,nanoscience & nanotechnology,instruments & instrumentation,physics, applied

Yuchen Mei,Li Du,Xuewen He,Yuan Du,Xiaoliang Chen,Zhongfeng Wang

DOI: https://doi.org/10.1109/socc49529.2020.9524762

2020-01-01

Abstract:Most of the existing memory encryption techniques in IoT devices are based on data encryption. The level of security increases at the cost of the increased encryption algorithm complexity, resulting in large power consumption and area overhead for high-security devices. In this paper, we take a significantly different approach to encrypt the device memory through address encryption. A reconfigurable architecture called Permutation based Address Encryption (PAE) is proposed, for the first time, to encrypt the device memory with minor hardware overhead and much shorter processing time. The architecture is synthesized in SMIC 40nm standard CMOS technology. Compared with Data Encryption Standard (DES), the proposed PAE achieves 16x encryption speed and 1.4x effective key length. When combined with the DES, the PAE+DES encryption outperforms existing hardware Advanced Encryption Standard (AES) with almost 2x in power efficiency, more than 1.5x in area efficiency and better security, making it a promising hardware encryption technique for IoT devices.

Fan Yao,Guru Venkataramani

DOI: https://doi.org/10.48550/arXiv.1902.03518

2019-02-10

Abstract:DRAM-based main memory and its associated components increasingly account for a significant portion of application performance bottlenecks and power budget demands inside the computing ecosystem. To alleviate the problems of storage density and power constraints associated with DRAM, system architects are investigating alternative non-volatile memory technologies such as Phase Change Memory (PCM) to either replace or be used alongside DRAM memory. While such alternative memory types offer many promises to overcome the DRAM-related issues, they present a significant security threat to the users due to persistence of memory data even after power down. In this paper, we investigate smart mechanisms to obscure the data left in non-volatile memory after power down. In particular, we analyze the effect of using a single encryption algorithm versus differentiated encryption based on the security needs of the application phases. We also explore the effect of encryption on a hybrid main memory that has a DRAM buffer cache plus PCM main memory. Our mechanism takes into account the limited write endurance problem associated with several non-volatile memory technologies including PCM, and avoids any additional writes beyond those originally issued by the applications. We evaluate using Gem5 simulator and SPEC 2006 applications, and show the performance and power overheads of our proposed design.

Cryptography and Security,Hardware Architecture

genxian liu,xi zhang,dongsheng wang,zhenyu liu,haixia wang

DOI: https://doi.org/10.1007/978-3-662-43908-1_1

2014-01-01

Abstract:Security is a crucial element of information systems. Extensive research for cryptographic algorithms that provide the sound theoretical basis of security. Among them security and integrity of memory has been a longstanding issue in trusted system design. Main memory is a critical component of all computing systems. Most of those systems are vulnerable to memory attacks, in which an attacker gains physical accesses to the unattended hardware, obtains the decryption keys from memory. We propose a method for protecting memory systems against attacks with hardware authentication and full memory encryption. The method is secure against all known type of memory attack. We have tested the method with software simulator and Field Programmable Gate Array (FPGA) platform. The results show that the method can authenticate and encrypt the contents of DRAM with 2.5 % performance penalties.

Yufeng Xie,Xiaoyong Xue,Jianguo Yang,Yinyin Lin,Qingtian Zou,Ryan Huang,Jingang Wu

DOI: https://doi.org/10.1109/tcsii.2015.2503707

2016-01-01

IEEE Transactions on Circuits & Systems II Express Briefs

Abstract:A 64-kB logic resistive random access memory (RRAM) chip for physically secure key storage is presented. The chip has security features of resisting fully invasive attacks such as deprocessing and microscopy observation, resisting side-channel attacks by providing symmetrical power and timing read signals, resisting malicious writing by a reduced write protection scheme with feedback, and resisting data interception attack across pin boundary by the ability of on-chip integration with logic platform. The chip is fabricated in a 0.13-μm standard logic process and implemented as the key storage for a demonstrative information security platform with a MIPS-based cryptoprocessor. Experiments of reverse engineering and mechanism investigation proved the fully invasive attack-resistant features, and experiments emulating side-channel attacks revealed no difference between 0 and 1. Experiments also showed that the information security platform could correctly encrypt and decrypt with the RRAM key storage. The proposed chip has obvious advantage on area, power, and security features for embedded key storage compared with its Antifuse counterpart.

Hwajeong Seo,Jihyun Kim,Jongseok Choi,Taehwan Park,Zhe Liu,Howon Kim

DOI: https://doi.org/10.3390/s140305441

2014-03-19

Abstract:Multivariate quadratic (MQ) cryptography requires the use of long public and private keys to ensure a sufficient security level, but this is not favorable to embedded systems, which have limited system resources. Recently, various approaches to MQ cryptography using reduced public keys have been studied. As a result of this, at CHES2011 (Cryptographic Hardware and Embedded Systems, 2011), a small public key MQ scheme, was proposed, and its feasible implementation on an embedded microprocessor was reported at CHES2012. However, the implementation of a small private key MQ scheme was not reported. For efficient implementation, random number generators can contribute to reduce the key size, but the cost of using a random number generator is much more complex than computing MQ on modern microprocessors. Therefore, no feasible results have been reported on embedded microprocessors. In this paper, we propose a feasible implementation on embedded microprocessors for a small private key MQ scheme using a pseudo-random number generator and hash function based on a block-cipher exploiting a hardware Advanced Encryption Standard (AES) accelerator. To speed up the performance, we apply various implementation methods, including parallel computation, on-the-fly computation, optimized logarithm representation, vinegar monomials and assembly programming. The proposed method reduces the private key size by about 99.9% and boosts signature generation and verification by 5.78% and 12.19% than previous results in CHES2012.

Le Guan,Chen Cao,Sencun Zhu,Jingqiang Lin,Peng Liu,Yubin Xia,Bo Luo

DOI: https://doi.org/10.1145/3317549.3319721

2019-01-01

Abstract:Sensitive data in a process could be scattered over the memory of a computer system for a prolonged period of time. Unfortunately, DRAM chips were proven insecure in previous studies. The problem becomes worse in the mobile environment, in which users' smartphones are easily lost or stolen. The powered-on phones may contain sensitive data in the vulnerable DRAM chips. In this paper, we propose MemVault, a mechanism to protect sensitive data in Android devices against physical memory attacks. MemVault keeps track of the propagation of well-marked sensitive data sources, and selectively encrypts tainted sensitive memory contents in the DRAM chip. When a tainted object is accessed, MemVault redirects the access to the internal RAM (iRAM), where the cipher-text object is decrypted transparently. iRAM is a system-on-chip (SoC) component which is by nature immune to physical memory exploits. We have implemented a MemVault prototype system, and have evaluated it with extensive experiments. Our results validate that MemVault effectively eliminates the occurrences of clear-text sensitive objects in DRAM chips, and imposes acceptable overheads.

Le-le YAN,Hui LI

DOI: https://doi.org/10.11896/j.issn.1002-137X.2017.06.022

2017-01-01

Abstract:To solve the traditional AES(Advanced Encryption Standard) algorithm's security reduction problem caused by the unchanged seed key and fixed key space,combining with the chaotic sequence cipher and AES algorithm,this paper proposed a dynamic seed key AES encryption algorithm based on compound chaotic sequences and finished the software implementations.The algorithm uses the private key to construct the same-parameters' dual chaotic system at both ends of the encryption and decryption.The chaotic sequence is generated and cross-combined through two chaotic systems(logistic and tent) by a number of iterations that related to the plaintext length,and then mapped into the dynamic initial seed keys for the AES block cipher.Through the security analysis,statistical test and performance test,the analytical results demonstrate that the proposed algorithm has the advantages of high security,strong adaptability and fast operation speed,and it is very suitable for cross platform wireless secure data transmission applications.

Xiang-yu LI,Yi-he SUN

DOI: https://doi.org/10.3321/j.issn:0372-2112.2007.02.003

2007-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:The random order execution which used in cryptographic ICs is a kind of few redundancy and low power countermeasures against power analysis attacks. The security is stronger with higher degree of uncertainty of timing. A data flow random executing AES encryption ASIC adopted the dynamic data flow architecture and served concurrent tokens randomly and sequentially. Its uncertainty was enhanced by increasing the number of order independent operations and batch arrival of tokens. A novel token hold-match-fetch structure was designed to complete the synchronization and random service control. Finally, all of the operations were random executing. That chip can resist 15000 samples Correlation Power Analysis. Its energy consumption is less than the known AES circuits with other countermeasures.

Zhezhi He,Shaahin Angizi,Farhana Parveen,Deliang Fan

DOI: https://doi.org/10.1145/3060403.3060460

2017-01-01

Abstract:The logic-in-memory architecture is highly promising for high-throughput data-driven applications. This paper presents a novel dual-mode magnetic crossbar architecture consisting of perpendicularly cross-coupled magnetic racetrack nanowires, which could morph between non-volatile multi-bit racetrack memory mode and in-memory data encryption mode. The proposed magnetic crossbar is able to automatically perform parallel in-memory bit-wise XOR computations of the data stored in the racetrack memories with the help of magnetic coupling physics without complex peripheral circuits, which could be leveraged to design energy efficient in-memory data encryption engine. We employ Advanced Encryption Standard (AES) algorithm to elucidate the efficiency of the proposed design. The device-to-architecture level simulation results show that the proposed architecture can achieve 70% and 17.5% lower energy consumption compared to CMOS-ASIC and recent domain wall (DW) AES implementations, respectively. In addition, the AES encryption speed increases by 29.7% compared to the DW-AES implementation.

Mei Hong,Hui Guo,X. Sharon Hu

DOI: https://doi.org/10.1145/2380403.2380414

2012-01-01

Abstract:This paper presents a tag design approach for memory data integrity protection. The approach is area, power and memory efficient, suitable to embedded systems that often suffer from stringent resource restriction. Experiments have been performed to compare the proposed approach with the state-of-the-art designs, which demonstrate that the approach can produce a memory data protection design with a low resource cost - achieving overhead savings of about 39% on chip area, 45% on power consumption, 65% on performance, and 12% on memory cost while maintaining the same or higher security level.

Lingxiao Duan,Jianyi Meng,Xiaolang Yan

DOI: https://doi.org/10.3969/j.issn.1000-386x.2015.10.052

2015-01-01

Abstract:Embedded CPU will cause side channel effects of power consumption when running encryption and decryption algorithms.In light of this issue,we proposed a random delay-based embedded processor architecture,which is able to resist DPA attacks.In the proposed architecture,random waiting delay will be inserted into preceding pipeline stage to interfere with the track of power consumption in timeline for every program running,so that to achieve the goal of DPA attacks resistant.Experiments show that this architecture has a good characteristic in resisting differential power analysis,moreover it also has lower design complexity in hardware circuit.

Yan Yao,Zhu Wang,Xiangyu Chen,Xiaojun Tong,Qinghua Luo

DOI: https://doi.org/10.1109/SmartIoT.2018.00-17

2018-01-01

Abstract:Cryptographic algorithms are extensively used in military, commerce and government agencies, responsible for divulgement avoidance and information safeguard. Due to lack of flexibility and efficiency to achieve multiple cryptographic algorithms encryption and decryption on one chip of FPGA, we has designed a dynamic reconfigurable control platform based on FPGA that could implement multiple cryptographic algorithms in high performance. According to functional requirement, the cryptographic algorithms stored in SD memory card is moved to assigned on-chip logical area, through reconfigurable processing unit controlled by on-chip Cortex-A9 ARM processor. Logical circuit has been refreshed as the end of the whole reconfiguration. The result of the experiment shows that this platform can switch algorithms with configuration speed of 15759.51 Bytes/ms as other functions on chip are working normally. It indicates that our design can reduce logical resource consumption, and improve utilization efficiency and system flexibility.

Jea Min Cho,Seungsoo Kim,Tae Won Park,Dong Hoon Shin,Yeong Rok Kim,Hyungjun Park,Dong Yun Kim,Soo Hyung Lee,Taegyun Park,Cheol Seong Hwang

DOI: https://doi.org/10.1039/d4nh00420e

2024-11-07

Nanoscale Horizons

Abstract:The importance of hardware security increases significantly to protect the vast amounts of private data stored on edge devices. Physical unclonable functions (PUFs) are gaining prominence as hardware security primitives for their ability to generate true random digital keys by exploiting the inherent randomness of the physical devices. Traditional approaches, however, require significant data movement between memory units and PUF generation circuits to perform encryption, presenting considerable energy efficiency and security challenges. This study introduces an innovative approach where PUF key generation and encryption are accomplished in the same vertically integrated resistive random access memory (V-RRAM), alleviating the data movement issue. The proposed V-RRAM encryption machine offers concealable PUFs, high area efficiency, and multi-thread data handling using parallel XOR logic operations. The encryption machine is compared with other machines, demonstrating the highest spatiotemporal cost-effectiveness.

materials science, multidisciplinary,chemistry, physical,nanoscience & nanotechnology