Nan Wang,Manting Yao,Dongxu Jiang,Song Chen,Yu Zhu

DOI: https://doi.org/10.1109/isvlsi.2018.00105

2018-01-01

Abstract:The high penetration of third-party intellectual property (3PIP) brings a high risk of malicious inclusions and data leakage in products due to the planted hardware Trojans, and system level security constraints have recently been proposed for MPSoCs protection against hardware Trojans. However, secret communication still can be established in the context of the proposed security constraints, and thus, another type of security constraints is also introduced to fully prevent such malicious inclusions. In addition, fulfilling the security constraints incurs serious overhead of schedule length, and a two-stage performance-constrained task scheduling algorithm is then proposed to maintain most of the security constraints. In the first stage, the schedule length is iteratively reduced by assigning sets of adjacent tasks into the same core after calculating the maximum weight independent set of a graph consisting of all timing critical paths. In the second stage, tasks are assigned to proper IP vendors and scheduled to time periods with a minimization of cores required. The experimental results show that our work reduces the schedule length of a task graph, while only a small number of security constraints are violated.

Junlong Zhou,Yufan Shen,Liying Li,Cheng Zhuo,Mingsong Chen

DOI: https://doi.org/10.1109/tcad.2022.3207328

IF: 2.9

2023-01-01

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:Due to the great advancement in computation, communication, and control technologies, the Internet of Things (IoT) can provide ubiquitous connectivity for anyone and anything at any time and any place, leading to a revolution in an information society. Protecting devices against various security threats is one of the most important challenges in IoT since IoT applications are generally security-critical systems while IoT devices are often poorly secured. For IoT devices, employing security services provided by smart gateways or edge/cloud servers to defend against various threats is an effective way to enhance their security. However, the finite battery energy of devices and the limited fund of device users hinder the wide application of security services in IoT. This necessitates the demand for designing new methodologies to tackle the tradeoff among security, energy, and fund of IoT devices. Therefore, this article attempts to optimize system security of IoT devices under energy and fund constraints. Specifically, to formulate the energy and fund constrained security optimization problem, we first propose a pricing model for the security services provided by the smart gateway. We then formulate the problem as a mixed-integer linear programming (MILP) problem. Since using a solver to address the MILP problem may be time consuming, we leverage the swarm intelligence technique to design a new task scheduling scheme that can efficiently solve the optimization problem. Extensive experiments are conducted to validate our proposed MILP and swarm intelligence-based task scheduling algorithms. Simulation results show that our scheme outperforms two state-of-the-art methods in improving system quality of security and guaranteeing schedule feasibility.

Junlong Zhou,Jin Sun,Peijin Cong,Zhe Liu,Xiumin Zhou,Tongquan Wei,Shiyan Hu

DOI: https://doi.org/10.1109/tsc.2019.2963301

IF: 11.019

2020-01-01

IEEE Transactions on Services Computing

Abstract:Internet of Things (IoT) devices, such as intelligent road side units and video-based detectors, are being deployed in emerging applications like sustainable and intelligent transportation systems. The primary obstacles against the development of these IoT devices are various security threats and huge energy consumption. In this article, we study the problem of scheduling tasks onto a heterogeneous multiprocessor system on a chip (MPSoC) deployed in IoT for optimizing quality of security under energy, real-time, and task precedence constraints. We first provide a mixed-integer linear programming (MILP) formulation for allocating and scheduling dependent tasks with energy and real-time constraints on a heterogeneous MPSoC system to maximize system quality of security. In order to efficiently solve the formulated MILP, we then propose an analysis-based two-stage scheme that determines the allocation, operating frequency, and security service of tasks to maximize system quality of security while satisfying the design constraints. We finally carry out extensive simulation experiments to validate our proposed two-stage scheme and MILP approach. Simulation results demonstrate that the proposed two-stage scheme outperforms a number of representative existing approaches in saving energy and improving system quality of security. The results also show that the proposed MILP approach can achieve the best performance and the proposed two-stage scheme has a close performance to the MILP approach.

Jiankang Ren,Chunxiao Liu,Chi Lin,Wei Jiang,Pengfei Wang,Xiangwei Qi,Simeng Li,Shengyu Li

DOI: https://doi.org/10.1109/tcad.2024.3445260

IF: 2.9

2024-11-09

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:Embedded real-time systems generally execute in a predictable and deterministic manner to deliver critical functionality within stringent timing constraints. However, the predictable execution behavior leaves the system vulnerable to schedule-based attacks. In this article, we present a multimode security-aware real-time scheduling scheme to counteract schedule-based attacks on multiprocessor real-time systems. To mitigate the vulnerability to the schedule-based attack, we propose a multimode scheduling method to reduce the accumulative attack effective window (AEW) of multiple victim tasks and prevent the untrusted tasks from executing during the AEW by distinctively scheduling mixed-trust tasks according to the system mode. To avoid the protection degradation due to the excessive blocking of untrusted tasks, we introduce a protection window for multiple victims on multiprocessors by analyzing the system protection capability limit under the system schedulability constraint. Furthermore, to maximize the protection capability of the multimode security-aware scheduling strategy on a multiprocessor platform, we also propose a security-aware packing algorithm to balance the workloads of mixed-trust tasks on different processors using a mixed-trust worst-fit decreasing heuristic strategy. The experimental results demonstrate that our proposed approach significantly outperforms the state-of-the-art method. Specifically, the AEW ratio and the AEW untrusted execution time ratio are reduced by 18.8% and 62.8%, respectively, while the defense success rate against ScheduLeak attack is improved by 16.3%.

engineering, electrical & electronic,computer science, interdisciplinary applications, hardware & architecture

Jinchao Chen,Chenglie Du,Fei Xie,Bin Lin

DOI: https://doi.org/10.1109/RTCSA.2016.38

2016-01-01

Abstract:Integrated modular design has been widely adopted as an approach to facilitating the development process of large-scale real-time systems. Although this approach can achieve enhanced design reuse and reduced time consumption, it results in a complex task allocation and scheduling problem. All tasks should be integrated into a shared platform according to a proper schedule, such that their deadlines will be met even under the worst case situations. In this paper, we study the allocation and scheduling problem of strictly periodic tasks in multi-core real-time systems. We first propose a necessary and sufficient condition to determine whether a new task is schedulable on a processor without changing the start times of the existing tasks. Then, based on the condition derived previously, we present a task assignment algorithm, which not only provides valid start times and processor allocations for all tasks, but also obtains the minimum number of processors required by the system. Finally, simulation experiments with randomly generated task sets are conducted to show the high efficiency and reliability of the proposed approach.

Yian ZHU,Linlin HUANG,Lian LI,Shuyan LUO

DOI: https://doi.org/10.3969/j.issn.1000-3428.2017.12.007

2018-01-01

Abstract:Due to the characteristics of concurrent,resource sharing and task migration in multi-core environment,uncertaionty has been introduced into the safety-critical task scheduling for partitioned operating system.In view of this,this paper presents a safety-critical task scheduling method for partitioned operating system in multi-core platform.This method divids the system partition into critical partition and non-critical partition by judging whether it contains safetycritical tasks.On the system layer,resource pre-allocated method is used to ensure the independent operation of the critical partitions.Moreover,it determines the minimum resource upper limit according to the partition utilization,so as to improve the resource utilization rate of the system while ensuring the reliability of safety-critical task scheduling.On the partition layer,a dual-mode fault-tolerant task scheduling algorithm based on dynamic priority and a minimum task priority search algorithm based on binary-search are proposed,which can enhance the fault-tolerance abality of the system.Experimental results show that the proposed method can guarantee the partitioned operating system to have higher resource utilization and reliability of task scheduling.

Jiang Wei,Nan Sang,Chang Zhengwei,Xiong Guangze

DOI: https://doi.org/10.3321/j.issn:1000-6893.2009.12.020

2009-01-01

Abstract:Security-critical systems tend to be subjected to much more serious security threats,therefore it poses a great challenge to reduce the risk of security-critical applications.This article proposes a risk-driven task scheduling mechanism by incorporating risk assessment with real time scheduling.Based on the concept of synthetic utilization of aperiodic tasks,an online task scheduling algorithm is designed to schedule security-sensitive aperiodic tasks with minimal security risk.This algorithm is an approximate algorithm,which can yield security performance guaranteed near-optimal solution in low time complexity without violating the security-critical and time-critical constraints of tasks.Simulation results show that the proposed algorithm can significantly reduce the risk of security-critical real time applications and satisfy the bound of risk approximation ratio.Specifically,maximal security risk reduction of up to 22.2% is achieved,and minimal approximation ratio of security risk can decrease to 102.4% for the bound of 110%.

Yufan Shen,Kun Cao,Yangguang Cui,Chengliang Zhou,Gongxuan Zhang,Junlong Zhou

DOI: https://doi.org/10.1109/hpcc-dss-smartcity-dependsys53884.2021.00219

2021-01-01

Abstract:With the rapid advance in information technology, we have witnessed the emergence of diverse promising Internet-of-things (IoT) applications, such as smart transportation, smart home, healthcare, and environmental monitoring. Due to parallel computing advantages, multicore systems are advocated as a good candidate hardware platform to accelerate the computation completion of IoT applications. However, the limited energy budgets and inherent openness characteristics of IoT scenarios pose fundamental challenges to the design of multicore systems. While making salutary attempts on improving the energy efficiency and augmenting the security level of IoT applications, most of the existing research works neglect the negative impacts of their optimization techniques on the lifetime of multicore platforms. Consequently, multicore systems potentially suffer from the earlier occurrence of permanent faults, i.e., have to be replaced in advance before the desired lifecycle ending point. In this paper, we conduct the first study on scheduling precedence constrained IoT applications depicted by directed acyclic graph (DAG) to minimize the energy consumption of multicore platforms under timing, security, and lifetime constraints. To address this problem, we first present a JADE-based offline algorithm to determine the optimal task-to-core allocation, task execution order, core operating frequency, as well as task security level. Following the offline algorithm, we then design a low-complexity dynamic algorithm to achieve extra energy savings by wisely adjusting core operating frequencies. Results reveal that our solution can reduce 41.48% energy consumption while meeting all design constraints compared to state-of-the-art schemes.

Jiang Wei,Chang Zhengwei,Xiong Guangze,Sang Nan

2009-01-01

Journal of Computer-Aided Design & Computer Graphics

Abstract:Security is of critical importance for real-time applications running on pervasive computing environments.Security-critical task model,security overhead model and security risk model are built for real-time periodic tasks,and a security risk-aware adaptive scheduling algorithm is proposed.According to inherent properties of real-time periodic tasks,the scheduling problem is transformed to a multi-stage decision-making procedure with the purpose of minimizing security risk.Based on approximate dynamic programming policy,the proposed algorithm is designed with security performance guaranteed and low-complexity mechanisms.Experimental results show that the proposed algorithm can significantly reduce security risk of applications,satisfy the security requirements,and adapt itself to dynamic pervasive computing environments.

Jakaria Abdullah,Gaoyang Dai,Morteza Mohaqeqi,Wang Yi

DOI: https://doi.org/10.1109/rtas.2018.00034

2018-01-01

Abstract:Currently the main approaches to model-based design of embedded software rely on the synchronous paradigm where the executions of software components are either statically ordered or enforced using predefined orderings e.g. Simulink diagrams. However, these approaches may result in resource over provisioning and inflexibility e.g. adding a new function block may require re-designing the whole system. To overcome these drawbacks, we use a dynamic approach allowing multi-tasking implementation of software components using real-time tasks. The challenge is run-time scheduling and schedulability analysis of real-time tasks with inter-task communication (i.e. resource sharing). In this paper, we use a graph-based task model (DRT developed in previous work) to describe software components as a system of real-time tasks sharing not only a uniprocessor but also non-preemptive resources e.g. accesses to shared data. However, timing analysis for such general task model with mixed execution of preemptive and non-preemptive jobs is yet to be developed. As the main technical contribution, we present an exact schedulability test for task systems containing both preemptive and non-preemptive computation jobs with experimental evaluations showing the efficiency of our approach for realistic workload such as the engine control applications. We also present an approach to generate event-triggered Ada programs from analyzed design models.

Xiaoyong Tang,Kenli Li,Zeng,Bharadwaj Veeravalli

DOI: https://doi.org/10.1109/tc.2010.117

2011-01-01

Abstract:In the recent past, security-sensitive applications, such as electronic transaction processing systems, stock quote update systems, which require high quality of security to guarantee authentication, integrity, and confidentiality of information, have adopted heterogeneous distributed system (HDS) as their platforms. This is primarily due to the fact that single parallel-architecture-based systems may not be sufficient to exploit the available parallelism with the running applications. Most security-aware applications end up in handling dependence tasks, also referred to as Directed Acyclic Graph (DAG), on these HDSs. Unfortunately, most existing algorithms for scheduling such DAGs in HDS fail to fully consider security requirements. In this paper, we systematically design a security-driven scheduling architecture that can dynamically measure the trust level of each node in the system by using differential equations. To do so, we introduce task priority rank to estimate security overhead of such security-critical tasks. Furthermore, we propose a security-driven scheduling algorithm for DAGs which can achieve high quality of security for applications. Our rigorous performance evaluation study results clearly demonstrate that our proposed algorithm outperforms the existing scheduling algorithms in terms of minimizing the makespan, risk probability, and speedup. We also observe that the improvement obtained by our algorithm increases as the security-sensitive data of applications increases.

Cong Hao,Nan Wang,T. Yoshimura

DOI: https://doi.org/10.1109/TCAD.2017.2661830

IF: 2.9

2017-12-01

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:In this paper, we focus on the low-power scheduling problem with multiple threshold and/or supply voltage technologies in high-level synthesis. We propose a unified scheduling approach which is applicable to various optimization problems, including: 1) dynamic power and resource usage co-optimization; 2) leakage power optimization; and 3) dynamic power and leakage power co-optimization. To deal with different objectives with high flexibility, three problems are divided into two common subproblems including delay assignment and resource density variance minimization, then a vertex potential-based mobility allocation model is proposed to solve two subproblems simultaneously. Experimental results show that, for dynamic power and resource co-optimization, our scheduling approach produces optimum solutions for all six benchmarks with 15 groups of data; for leakage power optimization it also greatly excels the latest existing work, by 20% leakage power reduction and 52 times speedup. Besides, for dynamic and leakage power co-optimization, the Pareto solutions are studied.

Computer Science

Tao Xie,Xiao Qin,Andrew Sung

2005-01-01

Abstract:Existing scheduling algorithms for periodic tasks ignore security requirements posed by sensitive applications and are consequently unable to perform properly in high performance embedded systems with security constraints. In this paper we present an approach to scheduling periodic tasks in high performance embedded systems subject to security and timing constraints. We propose a scheduling algorithm, or SASES (Security-Aware Scheduling for Embedded Systems), which accounts for both security and timing requirements. SASES judiciously distributes slack times among a variety of security services for a set of periodic tasks, thereby optimizing security for high-performance embedded systems without sacrificing schedulability. We show through extensive simulations that SASES is able to maximize security for high- performance embedded systems while guaranteeing timeliness. In particular, SASES significantly improves security over three baseline algorithms by up to 93.4%.

TingYu Jiang,YaHui Li,Yuan Dong

DOI: https://doi.org/10.1109/cis.2014.161

2014-01-01

Abstract:Security has been a serious concern in more and more embedded systems. But restricted by the constrained resources in embedded system, security may damage the system real-time performance, we refer to this challenge as the "security real-time gap". To bridge this gap, trusted computing technology can be a good candidate, however, researches focusing on real-time performance in embedded systems employing trusted computing is still blank. In this paper, we investigate the dynamic scheduling of hybrid tasks with trusted computing constraint, and present a hybrid tasks model to describe the tasks which need trusted computing resources and a strategy to manage the trusted requests. Furthermore, an advanced dynamic hybrid task schedule algorithm based on total bandwidth server (TBS) algorithm is presented in this paper, used for enhancing responsiveness performance of aperiodic tasks. In the evaluation by simulation, the proposed method reduced average response times of the aperiodic task by up to 30.4%.

Liangwei Ge,Song Chen,Kazutoshi Wakabayashi,Takashi Takenaka,Takeshi Yoshimura

DOI: https://doi.org/10.1093/ietfec/e90-a.9.1940

2007-01-01

IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences

Abstract:Scheduling, an essential step in high-level synthesis, is an intractable process. Traditional heuristic scheduling methods usually search schedules directly in the entire solution space. In this paper, we propose the idea of searching within an intermediate solution space (ISS). We put forward a max-flow scheduling method that heuristically prunes the solution space into a specific ISS and finds the optimum of ISS in polynomial time. The proposed scheduling algorithm has some unique features, such as the correction of previous scheduling decisions in a later stage, the simultaneous scheduling of all the operations, and the optimization of more complicated objectives. Aided by the max-flow scheduling method, we implement the optimization of the IC power-ground integrity problem at the behavior level conveniently. Experiments on well-known benchmarks show that without requiring additional resources or prolonging schedule latency, the proposed scheduling method can find a schedule that draws current more stably from a supply, which mitigates the voltage fluctuation in the on-chip power distribution network.

Tao Xie,Andrew H. Sung,Xiao Qin

DOI: https://doi.org/10.1109/ipdps.2005.185

2005-01-01

Abstract:An increasing number of real-time applications, such as aircraft control and medical electronics systems, require high quality of security to assure confidentiality, authenticity and integrity of information. However, most existing algorithms for scheduling independent tasks in real-time systems do not adequately consider security requirements of real-time tasks. In recognition of this problem we propose a novel dynamic scheduling algorithm with security awareness, which is capable of achieving high quality of security for real-time tasks while improving resource utilization. We have conducted extensive simulation experiments to quantitatively evaluate the performance of our approach. Specifically, experimental results show that compared with three heuristic algorithms, the proposed algorithm can consistently improve overall system performance in terms of quality of security and system guarantee ratio under a wide range of workload characteristics.

Yan Cui,Yingxin Wang,Yu Chen,Yuanchun Shi

DOI: https://doi.org/10.1093/comjnl/bxt056

2013-01-01

The Computer Journal

Abstract:This paper addresses the resource contention issue caused by the sharing of the last level caches by introducing a novel contention-aware scheduler. To accurately determine a task's resource requirements, i.e. the unique input of our scheduler, we develop a methodology to select the best heuristic metric from five candidates to represent a task's resource requirements. Based on the heuristic of each task acquired by exploiting the performance monitor unit, our scheduler co-schedules tasks with complementary resource requirements by combining scheduling order adjustments with task-to-core reassignments. The proposed scheduler has been implemented in the completely fair scheduler, rotating staircase deadline scheduler and O(1) schedulers. Using eight workloads constructed from nine NASA advanced supercomputing serial benchmarks on an Intel dual-core platform, the execution time of an individual task is reduced by up to 21%, system scalability and performance of a workload are improved by up to 13%, and the full potential of the contention-aware scheduling can be achieved if the time slice length and the period of executing each task once are short enough. In addition, our proposal exhibits benefits in the reduction of the execution time fluctuation of individual tasks due to an enforcement of reasonable usage of shared resources. Finally, we demonstrate an expected performance improvement on an Intel eight-core platform in order to suggest the broad applicability of our protocol.

Ying-Lin Zhao,Jian-Lei Yang,Wei-Sheng Zhao,Aida Todri-Sanial,Yuan-Qing Cheng

DOI: https://doi.org/10.1007/s11390-018-1868-6

IF: 1.871

2018-09-01

Journal of Computer Science and Technology

Abstract:Abstract Thanks to the emerging 3D integration technology, The multiprocessor system on chips (MPSoCs) can now integrate more IP cores on chip with improved energy efficiency. However, several severe challenges also rise up for 3D ICs due to the die-stacking architecture. Among them, power supply noise becomes a big concern. In the paper, we investigate power supply noise (PSN) interactions among different cores and tiers and show that PSN variations largely depend on task assignments. On the other hand, high integration density incurs a severe thermal issue on 3D ICs. In the paper, we propose a novel task scheduling framework considering both the PSN and the thermal issue. It mainly consists of three parts. First, we extract current stimuli of running tasks by analyzing their power traces derived from architecture level simulations. Second, we develop an efficient power delivery network (PDN) solver to evaluate PSN magnitudes efficiently. Third, we propose a heuristic algorithm to solve the formulated task scheduling problem. Compared with the state-of-the-art task assignment algorithm, the proposed method can reduce PSN by 12% on a 2 × 2 × 2 3D MPSoCs and by 14% on a 3 × 3 × 3 3D MPSoCs. The end-to-end task execution time also improves as much as 5.5% and 7.8% respectively due to the suppressed PSN.

computer science, software engineering, hardware & architecture

Yan Liu,Xiao-Mou. Chen,Ren-fei Li

2014-01-01

Abstract:Heterogeneous multiprocessors with FPGA component have recently received a lot of attention due to its low cost and power consumption. However, most of existing works about task scheduling algorithm focus on minimization of system cost or power consumption. Actually, optimizing multiprocessor performance within a given power budget has recently received a lot of attention. Peak power consumption should be carefully controlled than directly improve computing performance. Furthermore, FPGA component in multiprocessors has essential parallelism ability to execute multiple tasks at same time using dynamic reconfigurable features. In this environment, tasks and communications should be carefully scheduled because their execution orders affect the performance of the whole chip. This paper presents an Integer Linear Programming (ILP) formulation that integrates the resource delay model and FPGA-component with pipelined scheduling and global power control. Moreover, to enhance the computation efficiency, a heuristic algorithm namely PCLS that integrates pipelined scheduling and global power control for heterogeneous multiprocessor architecture is proposed. Experiments show that our ILP method obtains the optimal results when task nodes are less than 35. Proposed PCLS heuristic algorithm achieves on average 10% higher makespan compare with DLS. For heavier synthetic task application, PCLS can provide only about 12% performance degradation under 70% power budgets based on different heterogeneous multiprocessor architectures.

Computer Science

Xiaomin Zhu,Peizhong Lu

DOI: https://doi.org/10.1016/j.compeleceng.2008.11.022

IF: 4.152

2009-01-01

Computers & Electrical Engineering

Abstract:Nowadays, increasing attention has been directed towards the issue of security service for real-time applications with security requirements on clusters. However, the study of integrating security demands of real-time applications into scheduling is rare. In this paper, we propose a novel two-phase scheduling strategy TPSS which takes timing constraints and security needs into consideration for security-critical real-time applications on heterogeneous clusters. In the first-phase, a novel algorithm DSRF is proposed to schedule real-time tasks. When the system is in heavy burden, DSRF is able to degrade the security levels of new tasks and tasks waiting in local queues so as to enhance guarantee ratio. On the contrary, when the system is in light burden, DSRF is capable of employing slack time to improve the security quality of new tasks and adequately utilize the system resource. The minimal security level can guarantee the system security, and higher security level is able to make the system more secure. In the second-phase, a new algorithm FMSL is proposed to minimize the difference of security levels of accepted tasks and further improve the security levels of accepted tasks on the whole, which degrades the probability of the applications being attacked. We compare TPSS, DSRF, SAEDF and RF by extensive simulations. The experimental results indicate that TPSS significantly improves the flexibility of scheduling and outperforms other algorithms.