Huafeng CHEN,Haibin SHEN,Xiaolang YAN

2008-01-01

Abstract:The design-for-testability structure based on scan-chain often compromises the security of crypto chips.A method to attack certain hardware implementation of elliptic curve cryptography was presented.And an easy but effective secure scan method against the attack was proposed,which would not compromise the security of the chip,while maintaining high fault coverage.By controlling operational mode of the chip,the disability mechanism of scan enable signal was applied.The scan function was disabled when there existed security information in the chip.It solved the problem of secure information disclosure caused by scan chain design.

Wen-yu TANG,Yi-jun WANG,Zhi XUE

DOI: https://doi.org/10.3969/j.issn.1002-0802.2017.01.025

2017-01-01

Abstract:In recent years, the attack of malicious USB device in various scenarious becomes increasingly rampant, and brings big challenges to the infosec protection. The principles of malicious USB attack are studied, and the reality scenes also restored. This paper firstly discusses the limitation in storage capacity of the device, tells of the device storage capacity and the expansion of storage by modify USB firmware and using SD card. In order to study the severity of such malicious USB device attacks, the attack implementations under network isolation and high-protection environments are explored. Then anti-forensics capacity of the device is analyzed. And finally the defense measure against malicious USB device at the present stage are proposed.

ZHANG Jing,CHEN Wen-yuan,ZHANG Wei-ping

DOI: https://doi.org/10.3969/j.issn.1008-0570.2008.26.064

2008-01-01

Abstract:With the explosion of information,information security increasingly becomes evident. A complete data encryption system must consists of a reliable authentication mechanism and an advanced encryption algorithm. In this paper,we will introduce a new fast encryption system based on MEMS stronglink,USB controller and FPGA and its crypto algorithm is AES. A common IDE harddisk attached on this system becomes a very safe USB mobile encrypted harddisk,and the data throughput rate of it achieves 10MB/s,closed to any common USB flash disk in the market.

Mengqi Zeng,Dawu Gu,Fangyong Hou,Yuanyuan Zhang,Tao Cheng

DOI: https://doi.org/10.1109/NAS.2009.70

2009-01-01

Abstract:Self-securing storage devices prevents intruders from undetectably tampering with or permanently deleting stored data. To accomplish this, we design an efficient self-securing disk architecture, which is based on traditional self-securing storage prototype S4: 1) On the confidentiality protection side, authenticated encryption mode GCM is adapted to process disk block in parallel ,and authentication latency is overlapped with disk access latency so that our scheme is more efficient and secure than Windows BitLocker. 2) On the integrity protection side, GHASH proposed in GCM is used to generate MAC which is more efficient than SHA-1, MD5. Moreover, ldquoMinimum Integrity Verification Treerdquo is put forward to decrease performance loss at a maximum. 3) On the access control protection side, we propose a cryptographically featured capability based access control model, which is based on existing OSD access control model. We use hybrid hard drive as an instance to build a self-securing disk prototype which is implemented by simulation. The encryption/authentication overheads are significantly reduced due to buffer techniques and combined GCM/Flash scheme. According to the simulation results, the performance overhead is less than 18%, which is efficient and practical.

Sergei Skorobogatov

DOI: https://doi.org/10.48550/arXiv.2110.14090

2021-10-27

Abstract:There are many solutions for protecting user data on USB Flash drives. However, the family of IronKey devices was designed with the highest security expectations. They are definitely standing above others by being certified to FIPS 140-2 Level 3 and also claimed as certified by NATO for Top-Secret use. Many encrypted USB drives had been evaluated and found insecure, however, no public research on IronKey devices was made. This feasibility study fills the gap by looking inside the IronKey family of devices. As a result the users of the IronKey devices could be assured about the real level of the security protection they get. Several generations of devices from IronKey family and competitors are teared down, their hardware solutions discussed and evaluated for possible attacks. Some potential flaws are exposed and those findings are likely to stimulate further research into specific solutions aimed to protect user data.

Cryptography and Security

Ke Zhong,Zhihao Jiang,Ke Ma,Sebastian Angel

2020-01-01

Abstract:This paper introduces RBFuse, a system for interacting with USB flash drives safely in commodity OSes while bypassing the complex and bug-prone USB stack on the host. RBFuse prevents attacks in which malicious USB flash drives exploit low-level USB driver vulnerabilities to compromise the host machine. The simple idea behind RBFuse is to remap the USB stack to a virtual machine and export the flash drive's file system as a mountable virtual file system. The result of this decomposition is that the host can access all the files in the flash drive without speaking USB. This is beneficial from a security standpoint, since the VFS interface is small, has well-defined semantics, and can be formally verified. RBFuse requires no hardware modifications and introduces low overhead.

Shao Yu,Zhang Zheyi,Li Gang,Wang Changhong,Su Jie

2014-01-01

Abstract:The utility model relates to a mobile storage and charging device which comprises a hard disk, a chip, a fingerprint acquisition unit, a safety storage, a fingerprint verification unit, a cell, a booster circuit, a charging control unit, a first USB (universal serial bus) interface, a second USB interface and a shell. The safety storage is used for storing a fingerprint template of a user in an encrypted manner, the fingerprint verification unit is used for comparing fingerprint features with the fingerprint template in the safety storage and verifying the identity of the user, and the chip authorizes the first USB interface to read and write the hard disk after the identity of the user is verified. The read-write operation authorization of the hard disk can be obtained only after the legal identity of the user is verified through fingerprints, a mobile device can be repeatedly charged by a charging system, and safety, confidentiality and applicability of the mobile device are greatly improved.

Qingshuang Han,Liji Wu,Xiangmin Zhang

DOI: https://doi.org/10.1109/cis.2016.0144

2016-01-01

Abstract:With the development of Public Key Infrastructure (PKI) information technology, USB Key are being more and more used. When the Side Channel Attacks (SCA) caused a huge threat to the smart card, we also concerned about the impact which will be given on USB Key's security. Because of the different implementation and interface protocols, the side channel security characteristics between them are different in collecting the information of side channel. This paper proposes a method for acquiring power trace of USB Key. The method is a kind of driving design, which involves three aspects: Bus driver, card Reader driver and USB Key device driver. In order to confirm the design, we collected power trace from four kinds of USB Key, then the SCA performed to prove that the information we collected can be used. Some specific experimental results will be demonstrated in this paper.

LU Zhenyu,PAN Li,NI Yousheng

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.03.057

2006-01-01

Abstract:Nowadays,methods of network attack change significantly from one year to the next.In this situation,there comes a new technology called secure network GAP,which cuts off the direct connection in datalink layer,exchanges data in its own control,and therefore it resolves the conflict between secure isolation and data exchange effectively.This paper describes a method of implementing network secure isolation and data exchange system based on USB,which has been promoted in the network construction of Shanghai E-government network.

genxian liu,xi zhang,dongsheng wang,zhenyu liu,haixia wang

DOI: https://doi.org/10.1007/978-3-662-43908-1_1

2014-01-01

Abstract:Security is a crucial element of information systems. Extensive research for cryptographic algorithms that provide the sound theoretical basis of security. Among them security and integrity of memory has been a longstanding issue in trusted system design. Main memory is a critical component of all computing systems. Most of those systems are vulnerable to memory attacks, in which an attacker gains physical accesses to the unattended hardware, obtains the decryption keys from memory. We propose a method for protecting memory systems against attacks with hardware authentication and full memory encryption. The method is secure against all known type of memory attack. We have tested the method with software simulator and Field Programmable Gate Array (FPGA) platform. The results show that the method can authenticate and encrypt the contents of DRAM with 2.5 % performance penalties.

曾梦岐,谷大武,侯方勇,宋宁楠

DOI: https://doi.org/10.3969/j.issn.1000-3428.2010.03.046

2010-01-01

Abstract:This paper puts forward a self-securing disk model system, which self-securing storage technique and cryptographic technique are combined to protect disk data. The self-securing technique includes safe boundary, and access control. The cryptographic technique mainly refers to encryption/decryption. The self-securing disk is more intelligent when expansion adds to common disk architecture.

Weiping Zhang,Wenyuan Chen,Jian Tang,Peng Xu,Yibin Li,Shengyong Li

DOI: https://doi.org/10.3390/s91109300

IF: 3.9

2009-01-01

Sensors

Abstract:In this paper, a novel portable hard-disk encryption/decryption system with a MEMS coded lock is presented, which can authenticate the user and provide the key for the AES encryption/decryption module. The portable hard-disk encryption/decryption system is composed of the authentication module, the USB portable hard-disk interface card, the ATA protocol command decoder module, the data encryption/decryption module, the cipher key management module, the MEMS coded lock controlling circuit module, the MEMS coded lock and the hard disk. The ATA protocol circuit, the MEMS control circuit and AES encryption/decryption circuit are designed and realized by FPGA(Field Programmable Gate Array). The MEMS coded lock with two couplers and two groups of counter-meshing-gears (CMGs) are fabricated by a LIGA-like process and precision engineering method. The whole prototype was fabricated and tested. The test results show that the user’s password could be correctly discriminated by the MEMS coded lock, and the AES encryption module could get the key from the MEMS coded lock. Moreover, the data in the hard-disk could be encrypted or decrypted, and the read-write speed of the dataflow could reach 17 MB/s in Ultra DMA mode.

Weiping Zhang,Wenyuan Chen,Jian Tang,Peng Xu,Yibin Li,Shengyong Li

DOI: https://doi.org/10.3390/s91109300

IF: 3.9

2009-01-01

Sensors

Abstract:In this paper, a novel portable hard-disk encryption/decryption system with a MEMS coded lock is presented, which can authenticate the user and provide the key for the AES encryption/decryption module. The portable hard-disk encryption/decryption system is composed of the authentication module, the USB portable hard-disk interface card, the ATA protocol command decoder module, the data encryption/decryption module, the cipher key management module, the MEMS coded lock controlling circuit module, the MEMS coded lock and the hard disk. The ATA protocol circuit, the MEMS control circuit and AES encryption/decryption circuit are designed and realized by FPGA(Field Programmable Gate Array). The MEMS coded lock with two couplers and two groups of counter-meshing-gears (CMGs) are fabricated by a LIGA-like process and precision engineering method. The whole prototype was fabricated and tested. The test results show that the user's password could be correctly discriminated by the MEMS coded lock, and the AES encryption module could get the key from the MEMS coded lock. Moreover, the data in the hard-disk could be encrypted or decrypted, and the read-write speed of the dataflow could reach 17 MB/s in Ultra DMA mode.

Chun-Yi Wang,Fu-Hau Hsu

2024-09-19

Abstract:USB-based attacks have increased in complexity in recent years. Modern attacks incorporate a wide range of attack vectors, from social engineering to signal injection. The security community is addressing these challenges using a growing set of fragmented defenses. Regardless of the vector of a USB-based attack, the most important risks concerning most people and enterprises are service crashes and data loss. The host OS manages USB peripherals, and malicious USB peripherals, such as those infected with BadUSB, can crash a service or steal data from the OS. Although USB firewalls have been proposed to thwart malicious USB peripherals, such as USBFilter and USBGuard, they cannot prevent real-world intrusions. This paper focuses on building a security framework called USBIPS within OSs to defend against malicious USB peripherals. This includes major efforts to explore the nature of malicious behavior and build persistent protection from USB-based intrusions. We first present a behavior-based detection mechanism focusing on attacks integrated into USB peripherals. We then introduce the novel idea of an allowlisting-based method for USB access control. We finally develop endpoint detection and response system to build the first generic security framework that thwarts USB-based intrusion. Within a centralized threat analysis framework, it provides persistent protection and may detect unknown malicious behavior. By addressing key security and performance challenges, these efforts help modern OSs against attacks from untrusted USB peripherals.

Cryptography and Security

Niusen Chen,Bo Chen,Weisong Shi

DOI: https://doi.org/10.48550/arXiv.2203.16349

2022-03-31

Abstract:Nowadays, mobile devices have been used broadly to store and process sensitive data. To ensure confidentiality of the sensitive data, Full Disk Encryption (FDE) is often integrated in mainstream mobile operating systems like Android and iOS. FDE however cannot defend against coercive attacks in which the adversary can force the device owner to disclose the decryption key. To combat the coercive attacks, Plausibly Deniable Encryption (PDE) is leveraged to plausibly deny the very existence of sensitive data. However, most of the existing PDE systems for mobile devices are deployed at the block layer and suffer from deniability compromises. Having observed that none of existing works in the literature have experimentally demonstrated the aforementioned compromises, our work bridges this gap by experimentally confirming the deniability compromises of the block-layer mobile PDE systems. We have built a mobile device testbed, which consists of a host computing device and a flash storage device. Additionally, we have deployed both the hidden volume PDE and the steganographic file system at the block layer of the testbed and performed disk forensics to assess potential compromises on the raw NAND flash. Our experimental results confirm it is indeed possible for the adversary to compromise the block-layer PDE systems by accessing the raw NAND flash in practice. We also discuss potential issues when performing such attacks in real world.

Cryptography and Security

Feifei Cai,Guoqiang Bai,Huizhi Liu,Xiaobo Hu

DOI: https://doi.org/10.1109/iceiec.2016.7589684

2016-01-01

Abstract:Flash memory, as a storage medium, is normally featured with high security, and thus often contains sensitive data such as passwords, cryptographic keys and other confidential contents. Optical fault injection attack is a conventional way that aims at extracting the information stored on memories. However, it has not been developed yet using this method to attack flash memories of modern micro smartcards. In this paper, the attack on flashes with optical fault injection is analyzed theoretically, and the experimental process is presented in detail. Experimental results show that some certain bytes of data can be changed into known value with optical fault injection attacks. In the read/write process, some secure information can be obtained by this approach of attack. The feature of the fault injection attack on flashes shown in the experiment can be utilized to bypass the verify operation of certain changed bytes and to guess the remaining original bytes to gain contents stored in non-volatile memories.

Ming Hu,Minghua Jiang

2007-01-01

Abstract:To the depth of applying the Internet, information security has associated with the dependability of access platform, access path, and storage. The quality of dependable service focuses on controllability of accessing efficiency, availability, and security of application data. FLASH is proposed for dependable networked data storage systems in which new i-node structure is used to implement user's choices for file layouts such as non-stripping, non-striped mirroring, stripping, and striped mirroring and for security types such as fully sharing, releasing-with-signature, encrypted protection, and replicating protection. The solution provides the three-level dependable mechanism and functional agents implemented by clients, data servers, and object-based storage devices, and isolates user hosts from networked data storage both for users to select the proper quality of dependable service according to file content and access path and to guarantee the performance optimization of distributed storage systems.

Zijian Deng,Xuejia Lai

DOI: https://doi.org/10.1109/sitis.2007.38

2008-01-01

Abstract:How to protect the sensitive information from unauthorized disclosure is one of the problems in computer security. In this paper we present a new method for preventing the sensitive file from unauthorized disclosure, Security File Management (SFM). SFM relies on Dual-Core technology, Extensible Firmware Interface and Trusted computing to provide a much high level of security than current solutions. All operations of sensitive files are run in Trusted Boundary. In this paper, we present the architecture of SFM, the initial designer and the security analysis.

Yu Cai,Saugata Ghose,Yixin Luo,Ken Mai,Onur Mutlu,Erich F. Haratsch

DOI: https://doi.org/10.48550/arXiv.1805.03291

2018-05-08

Hardware Architecture

Abstract:This paper summarizes our work on experimentally analyzing, exploiting, and addressing vulnerabilities in multi-level cell NAND flash memory programming, which was published in the industrial session of HPCA 2017, and examines the work's significance and future potential. Modern NAND flash memory chips use multi-level cells (MLC), which store two bits of data in each cell, to improve chip density. As MLC NAND flash memory scaled down to smaller manufacturing process technologies, manufacturers adopted a two-step programming method to improve reliability. In two-step programming, the two bits of a multi-level cell are programmed using two separate steps, in order to minimize the amount of cell-to-cell program interference induced on neighboring flash cells. In this work, we demonstrate that two-step programming exposes new reliability and security vulnerabilities in state-of-the-art MLC NAND flash memory. We experimentally characterize contemporary 1X-nm (i.e., 15--19nm) flash memory chips, and find that a partially-programmed flash cell (i.e., a cell where the second programming step has not yet been performed) is much more vulnerable to cell-to-cell interference and read disturb than a fully-programmed cell. We show that it is possible to exploit these vulnerabilities on solid-state drives (SSDs) to alter the partially-programmed data, causing (potentially malicious) data corruption. Based on our observations, we propose several new mechanisms that eliminate or mitigate these vulnerabilities in partially-programmed cells, and at the same time increase flash memory lifetime by 16%.

Xin Su,Ziyu Wang,Xiaofeng Liu,Chang Choi,Dongmin Choi

DOI: https://doi.org/10.1155/2018/4296934

IF: 1.968

2018-01-01

Security and Communication Networks

Abstract:Including mobile environment, conventional security mechanisms have been adapted to satisfy the needs of users. However, the device environment-IoT-based number of connected devices is quite different to the previous traditional desktop PC-or mobile-based environment. Based on the IoT, different kinds of smart and mobile devices are fully connected automatically via device controller, such as smartphone. Therefore, controller must be secure compared to conventional security mechanism. According to the existing security threats, these are quite different from the previous ones. Thus, the countermeasures applied should be changed. However, the smart device-based authentication techniques that have been proposed to date are not adequate in terms of usability and security. From the viewpoint of usability, the environment is based on mobility, and thus devices are designed and developed to enhance their owners' efficiency. Thus, in all applications, there is a need to consider usability, even when the application is a security mechanism. Typically, mobility is emphasized over security. However, considering that the major characteristic of a device controller is deeply related to its owner's private information, a security technique that is robust to all kinds of attacks is mandatory. In this paper, we focus on security. First, in terms of security achievement, we investigate and categorize conventional attacks and emerging issues and then analyze conventional and existing countermeasures, respectively. Finally, as countermeasure concepts, we propose several representative methods.