Chen Yan,Hocheol Shin,Connor Bolton,Wenyuan Xu,Yongdae Kim,Kevin Fu

DOI: https://doi.org/10.1109/sp40000.2020.00026

2020-01-01

Abstract:Over the last six years, several papers demonstrated how intentional analog interference based on acoustics, RF, lasers, and other physical modalities could induce faults, influence, or even control the output of sensors. Damage to the availability and integrity of sensor output carries significant risks to safety-critical systems that make automated decisions based on trusted sensor measurement. Established signal processing models use transfer functions to express reliability and dependability characteristics of sensors, but existing models do not provide a deliberate way to express and capture security properties meaningfully. Our work begins to fill this gap by systematizing knowledge of analog attacks against sensor circuitry and defenses. Our primary contribution is a simple sensor security model such that sensor engineers can better express analog security properties of sensor circuitry without needing to learn significantly new notation. Our model introduces transfer functions and a vector of adversarial noise to represent adversarial capabilities at each stage of a sensor's signal conditioning chain. The primary goals of the systematization are (1) to enable more meaningful quantification of risk for the design and evaluation of past and future sensors, (2) to better predict new attack vectors, and (3) to establish defensive design patterns that make sensors more resistant to analog attacks.

Zhiyun Wang,Kaikai Pan,Wenyuan Xu

DOI: https://doi.org/10.1109/tii.2024.3463704

IF: 12.3

2024-01-01

IEEE Transactions on Industrial Informatics

Abstract:With the high proportion integration of photovoltaic power, the grid-tie inverter as a power electronic device has become one of the mainstream solutions. Considering that the sensors of the grid-tie inverter are vulnerable to exploitation by cyber and physical attacks, this article conducts a synthetic analysis of sensor attacks from the perspective of locations, strategies, and consequences. We find that sensor attacks in the low-frequency domain can cause a range of damages, including damping the output power, reducing power quality, and even burning out the inverter. To detect sensor attacks in changing environments, we propose a robust detector in the finite frequency domain, while the unknowns of varying system dynamics are decoupled. The detector design is formulated as a tractable optimization problem that can be solved numerically. To support real-time detection, an analytical solution form based on a quadratic programming reformulation with relaxed constraints is constructed. To the best of our knowledge, this is the first attempt to conduct the synthetic analysis of sensor attacks on the grid-tie inverter and address its robust detector design in the finite frequency domain under the parameter-varying model. Numerical simulations show that sensor attacks could bring severe damage but our detector can detect them effectively.

Xinchi Xu,Yonggang Wang,Bo Wu,Zeyu Wang,Yonghang Zhou

DOI: https://doi.org/10.1109/tim.2023.3309357

IF: 5.6

2023-01-01

IEEE Transactions on Instrumentation and Measurement

Abstract:As field programmable gate array (FPGA) becomes an increasingly important digital circuit platform, the voltage fluctuations on its power distribution network (PDN) play an unignorable role in impacting circuit operation and performance. Voltage fluctuations induced by one circuit block can affect other blocks on the same chip through the PDN, causing performance degradation or even functionality loss by critical timing fault. This also opens the door to numerous potential attacks that maliciously create transient voltage drops on the PDN in multi-user FPGA environments. Therefore, a compact, location-flexible, and high-speed ON-chip voltage sensor is needed to understand or monitor the voltage fluctuations on the PDN at runtime. Limited by the available logic resources of FPGA, in this article, the design possibility of such sensors using tapped delay line (TDL) based time-to-digital converter (TDC) technique is explored, and two types of resolution enhancement methods are presented to achieve its optimal performance. Through a rigorous calibration process, the performance of the proposed sensors is quantitively evaluated and compared. Using Xilinx Kintex-7 FPGA, the voltage sensors can achieve 0.9 mV measurement resolution with 0.9 mVrms precision at a 554 MHz sampling rate. The achievable resolution is comparable to the built-in 12-bit analog-to-digital converter (ADC), but the sampling rate is increased by several hundred times. Through experimental measurements, the nanosecond-scale transients detecting capability of the sensors are also demonstrated.

Xinchi Xu,Yonggang Wang

DOI: https://doi.org/10.1109/i2mtc53148.2023.10175889

2023-01-01

Abstract:Field programmable gate arrays (FPGAs) based time-to-digital converters (TDCs) have been broadly investigated and widely used in recent years. However, voltage variations on the power distribution network (PDN) of FPGA are significantly affecting and sometimes devastating to the TDC performance. In this paper, we experimentally measure the performance changes of the tapped delay line (TDL) based TDC under conditions that the PDN has static and transient voltage variations and analyze the voltage influences theoretically. The test results show 0.2%/mV degradation of the TDC resolution with voltage drop and 12%1mV deterioration of the average RMS precision with voltage deviation from typical. Besides, performance degradation due to transient voltage fluctuations caused by switching activities of adjacent digital circuits is also experimentally demonstrated. In particular, the RMS precision exhibits periodic deterioration with the measured time interval, which can be reasonably explained in theory. For the influence coming from static voltage variations, we find the performance change can be greatly suppressed by the dynamic calibration method. However, for the influence coming from voltage transients, the performance degradation is inevitable, which raises a warning for FPGA management, especially for multi-tenant FPGAs where multiple untrusting cloud users simultaneously reside in a single FPGA. The test results and theoretical analysis in this paper can guide system optimization and real-time correction to reduce the impact of voltage transients.

Saideep Sreekumar,Mohammed Ashraf,Mohammed Nabeel,Ozgur Sinanoglu,Johann Knechtel

DOI: https://doi.org/10.48550/arXiv.2211.08046

2022-11-15

Abstract:Power side-channel (PSC) attacks are well-known threats to sensitive hardware like advanced encryption standard (AES) crypto cores. Given the significant impact of supply voltages (VCCs) on power profiles, various countermeasures based on VCC tuning have been proposed, among other defense strategies. Driver strengths of cells, however, have been largely overlooked, despite having direct and significant impact on power profiles as well. For the first time, we thoroughly explore the prospects of jointly tuning driver strengths and VCCs as novel working principle for PSC-attack countermeasures. Toward this end, we take the following steps: 1) we develop a simple circuit-level scheme for tuning; 2) we implement a CAD flow for design-time evaluation of ASICs, enabling security assessment of ICs before tape-out; 3) we implement a correlation power analysis (CPA) framework for thorough and comparative security analysis; 4) we conduct an extensive experimental study of a regular AES design, implemented in ASIC as well as FPGA fabrics, under various tuning scenarios; 5) we summarize design guidelines for secure and efficient joint tuning. In our experiments, we observe that runtime tuning is more effective than static tuning, for both ASIC and FPGA implementations. For the latter, the AES core is rendered >11.8x (i.e., at least 11.8 times) as resilient as the untuned baseline design. Layout overheads can be considered acceptable, with, e.g., around +10% critical-path delay for the most resilient tuning scenario in FPGA. We will release source codes for our methodology, as well as artifacts from the experimental study, post peer-review.

Cryptography and Security,Hardware Architecture

Fan Zhang,Bolin Yang,Bojie Yang,Yiran Zhang,Shivam Bhasin,Kui Ren

2019-01-01

Abstract:In this paper, we propose a novel cell-level side channel conntermeasure fluctuating power logic (FPL), which diffuses the correlation between the real power consumption and the fixed data transitions by employing a cascade voltage logic. The countermeasure further acts as a cell-level V-DD randomizer, making it a strong candidate for implementing algorithmic countermeasure and exploiting its noise generation capabilities. This proposed scheme is illustrated by a standard flip-flop. HSPICE based simulation results show that the modified flip-flop is resistant against power analysis at the cost of doubled power dissipation. Two illustrative case studies of PRESENT and AES substitutions have been explored. The resistance against Side-Channel Analysis(SCA) is evaluated by the correlation power analysis. The new logic outperforms other counterparts in consideration of both security and cost, which renders it as a practical solution for resource-constrained systems. The proposed cell-level conntermeasure can naturally mitigate other SCA such as electromagnetic analysis.

Amrou Zyad Benelhaouare,Idir Mellal,Maroua Oumlaz,Ahmed Lakhssassi

DOI: https://doi.org/10.3390/electronics13214176

IF: 2.9

2024-10-25

Electronics

Abstract:Side-channel attacks (SCAs) are powerful techniques used to recover keys from electronic devices by exploiting various physical leakages, such as power, timing, and heat. Although heat is one of the less frequently analyzed channels due to the high noise associated with thermal traces, it poses a significant and growing threat to the security of very large-scale integrated (VLSI) microsystems, particularly system in package (SiP) technologies. Thermal side-channel attacks (TSCAs) exploit temperature variations, risking not only hardware damage from excessive heat dissipation but also enabling the extraction of sensitive data, like cryptographic keys, by observing thermal patterns. This dual threat underscores the need for a synergistic approach to thermal management and security in designing integrated microsystems. In response, this paper presents a novel approach that improves the early detection of abnormal thermal fluctuations in SiP designs, preventing cybercriminals from exploiting such anomalies to extract sensitive information for malicious purposes. Our approach employs a new concept called Thermal Digital Twin (TDT), which integrates two previously separate methods and techniques, resulting in successful outcomes. It combines the gradient direction sensor scan (GDSSCAN) to capture thermal data from the physical field programmable gate array (FPGA), which guarantees rapid thermal scan with a measurement period that could be close to 10 μs, a resolution of 0.5 ∘C, and a temperature range from −40 ∘C to 140 ∘C; once the data are transmitted in real time to a Digital Twin created in COMSOL Multiphysics® 6.0 for simulation using the Finite Element Method (FEM), the real time required by the CPU to perform all the necessary calculations can extend to several seconds or minutes. This integration allows for a detailed analysis of thermal transfer within the SiP model of our FPGA. Implementation and simulations demonstrate that the Thermal Digital Twin (TDT) approach could reduce the risks associated with TSCA by a significant percentage, thereby enhancing the security of FPGA systems against thermal threats.

engineering, electrical & electronic,computer science, information systems,physics, applied

Shayan Moini,Shanquan Tian,Jakub Szefer,Daniel Holcomb,Russell Tessier

DOI: https://doi.org/10.48550/arXiv.2011.07603

2021-04-18

Abstract:To lower cost and increase the utilization of Cloud Field-Programmable Gate Arrays (FPGAs), researchers have recently been exploring the concept of multi-tenant FPGAs, where multiple independent users simultaneously share the same remote FPGA. Despite its benefits, multi-tenancy opens up the possibility of malicious users co-locating on the same FPGA as a victim user, and extracting sensitive information. This issue becomes especially serious when the user is running a machine learning algorithm that is processing sensitive or private information. To demonstrate the dangers, this paper presents a remote, power-based side-channel attack on a deep neural network accelerator running in a variety of Xilinx FPGAs and also on Cloud FPGAs using Amazon Web Services (AWS) F1 instances. This work in particular shows how to remotely obtain voltage estimates as a deep neural network inference circuit executes, and how the information can be used to recover the inputs to the neural network. The attack is demonstrated with a binarized convolutional neural network used to recognize handwriting images from the MNIST handwritten digit database. With the use of precise time-to-digital converters for remote voltage estimation, the MNIST inputs can be successfully recovered with a maximum normalized cross-correlation of 79% between the input image and the recovered image on local FPGA boards and 72% on AWS F1 instances. The attack requires no physical access nor modifications to the FPGA hardware.

Cryptography and Security

Davide Galli,Adriano Guarisco,William Fornaciari,Matteo Matteucci,Davide Zoni

2024-09-16

Abstract:To defeat side-channel attacks, many recent countermeasures work by enforcing random run-time variability to the target computing platform in terms of clock jitters, frequency and voltage scaling, and phase shift, also combining the contributions from different actuators to maximize the side-channel resistance of the target. However, the robustness of such solutions seems strongly influenced by several hyper-parameters for which an in-depth analysis is still missing. This work proposes a fine-grained dynamic voltage and frequency scaling actuator to investigate the effectiveness of recent desynchronization countermeasures with the goal of highlighting the link between the enforced run-time variability and the vulnerability to side-channel attacks of cryptographic implementations targeting FPGAs. The analysis of the results collected from real hardware allowed for a comprehensive understanding of the protection offered by run-time variability countermeasures against side-channel attacks.

Cryptography and Security,Hardware Architecture

Yi Gao,Yunji Li,Ziyan Hua,Junjie Chen,Yajun Wu

DOI: https://doi.org/10.3390/info15100649

2024-01-01

Information

Abstract:In modern industrial applications, production quality, system performance, process reliability, and safety have received considerable attention. This article proposes a dynamic event-triggered attack estimator for Markovian jump stochastic systems susceptible to actuator deception attacks. Utilizing the developed estimator, the presented attack-tolerant control strategy can tolerate the effects of such attacks and ensure the mean-square convergence of the overall closed-loop system. A dynamic event-triggered mechanism is implemented on the sensor side to optimize communication efficiency. To address the potential threat of deception attacks, a plug-and-play (PnP) secure monitoring and control architecture is introduced. This architecture facilitates the seamless integration of the designed attack-tolerant controller with the nominal feedback controller, thereby enhancing system security without requiring significant modifications to the existing control structure. The practicality and effectiveness of the proposed approaches are demonstrated through experimental results on a switched boost converter circuit.

David A. Kaplan

2023-03-01

Abstract:In cache-based side channel attacks, an attacker infers information about the victim based on the presence, or lack thereof, of one or more cachelines. Determining a cacheline's presence, which we refer to as "reading the signal", typically requires testing the access time of the line using a suitably high precision timer. In this paper we introduce novel gadgets which leverage CPU speculation to enable modification of these signals, before they are read, for a variety of purposes. First, these gadgets enable an attacker to optimize cache-based side channel attacks by evaluating arbitrary logic functions on cacheline signals prior to their measurement. Second, we demonstrate amplification techniques that enable an attacker to read a signal even if no high precision timer is available. Combined, these techniques can be used to improve existing side channel attacks even if timer access is limited. We evaluate the effectiveness of these techniques on a modern x86 CPU and demonstrate that when properly tuned, cache side channel signals can be reliably modified with near 100% accuracy and are able to be read with a timer as coarse as 100ms or more.

Cryptography and Security

Fan Zhang,Bolin Yang,Bojie Yang,Yiran Zhang,Shivam Bhasin,Kui Ren

DOI: https://doi.org/10.1109/asianhost47458.2019.9006696

2019-01-01

Abstract:In this paper, we propose a novel cell-level side channel countermeasure fluctuating power logic (FPL), which diffuses the correlation between the real power consumption and the fixed data transitions by employing a cascade voltage logic. The countermeasure further acts as a cell-level V DD randomizer, making it a strong candidate for implementing algorithmic countermeasure and exploiting its noise generation capabilities. This proposed scheme is illustrated by a standard flip-flop. HSPICE based simulation results show that the modified flip-flop is resistant against power analysis at the cost of doubled power dissipation. Two illustrative case studies of PRESENT and AES substitutions have been explored. The resistance against Side-Channel Analysis(SCA) is evaluated by the correlation power analysis. The new logic outperforms other counterparts in consideration of both security and cost, which renders it as a practical solution for resource-constrained systems. The proposed cell-level countermeasure can naturally mitigate other SCA such as electromagnetic analysis.

Daehee Lee,Minseok Yi,Sun Il Kwon

2024-10-12

Abstract:This study presents a novel field-programmable gate array (FPGA)-based Time-to-Digital Converter (TDC) design suitable for high timing resolution applications, utilizing two new techniques. First, a cross-detection (CD) method is introduced that minimizes the occurrence of bubbles, which cause inaccuracy in the timing measurement of a TDC in thermometer codes, by altering the conventional sampling pattern, thereby yielding an average bin size half of its typical size. The second technique employs dual-side monitoring (DSM) of thermometer codes, including end-of-propagation (EOP) and start-of-propagation (SOP). Distinct from conventional TDCs, which focus solely on SOP thermometer codes, this technique utilizes EOP to calibrate SOP, simultaneously enhancing time resolution and the TDC's stability against changes in temperature and location. The proposed DSM scheme necessitates only an additional CARRY4 for capturing the EOP thermometer code, rendering it a resource-efficient solution. The CD-DSM TDC has been successfully implemented on a Virtex-7 Xilinx FPGA (a 28-nm process), with an average bin size of 6.1 ps and a root mean square of 3.8 ps. Compared to conventional TDCs, the CD-DSM TDC offers superior linearity. The successful measurement of ultra-high coincidence timing resolution (CTR) from two Cerenkov radiator integrated microchannel plate photomultiplier tubes (CRI-MCP-PMTs) was conducted with the CD-DSM TDCs for sub-100 ps timing measurements. A comparison with current-edge TDCs further highlights the superior performance of the CD-DSM TDCs.

Instrumentation and Detectors,Signal Processing,Medical Physics

George Provelengios,Daniel Holcomb,Russell Tessier

DOI: https://doi.org/10.1145/3451236

IF: 2.837

2021-07-29

ACM Transactions on Reconfigurable Technology and Systems

Abstract:Recent research has exposed a number of security issues related to the use of FPGAs in embedded system and cloud computing environments. Circuits that deliberately waste power can be carefully crafted by a malicious cloud FPGA user and deployed to cause denial-of-service and fault injection attacks. The main defense strategy used by FPGA cloud services involves checking user-submitted designs for circuit structures that are known to aggressively consume power. Unfortunately, this approach is limited by an attacker’s ability to conceive new designs that defeat existing checkers. In this work, our contributions are twofold. We evaluate a variety of circuit power wasting techniques that typically are not flagged by design rule checks imposed by FPGA cloud computing vendors. The efficiencies of five power wasting circuits, including our new design, are evaluated in terms of power consumed per logic resource. We then show that the source of voltage attacks based on power wasters can be identified. Our monitoring approach localizes the attack and suppresses the clock signal for the target region within 21 μs, which is fast enough to stop an attack before it causes a board reset. All experiments are performed using a state-of-the-art Intel Stratix 10 FPGA.

computer science, hardware & architecture

Jens Trautmann,Nikolaos Patsiatzis,Andreas Becher,Jürgen Teich,Stefan Wildermann

DOI: https://doi.org/10.48550/arXiv.2206.10368

2022-06-21

Abstract:Side-Channel Analysis (SCA) requires the detection of the specific time frame Cryptographic Operations (COs) takeplace in the side-channel signal. In laboratory conditions with full control over the Device under Test (DuT), dedicated trigger signals can be implemented to indicate the start and end of COs. For real-world scenarios, waveform-matching techniques have been established which compare the side-channel signal with a template of the CO's pattern in real time to detect the CO in the side channel. State-of-the-art approaches are implemented on Field-Programmable Gate Arrays (FPGAs). However, current waveform-matching designs are processing the samples from Analog-to-Digital Converters (ADCs) sequentially and can only work with low sampling rates due to the limited clock speed of FPGAs. This makes it increasingly difficult to apply existing techniques on modern DuTs that are operating with clock speeds in the GHz range. In this paper, we present a parallel waveform-matching architecture that is capable of performing waveform matching at the speed of fast ADCs. We implement the proposed architecture in a high-end FPGA-based digitizer and apply it to detect AES COs from the side channel of a single-board computer operating at 1 GHz. Our implementation allows for waveform matching at 10 GS/s with high accuracy, thus offering a speedup of 50x compared to the fastest state-of-the-art implementation known to us.

Cryptography and Security,Hardware Architecture

Haocheng Ma,Jiaji He,Yanjiang Liu,Jun Kuai,He Li,Leibo Liu,Yiqiang Zhao

DOI: https://doi.org/10.1109/tcad.2020.3035346

IF: 2.9

2020-01-01

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:Field-programmable gate arrays (FPGAs) are integrated circuits (ICs) that can be reconfigured to the desired functionalities, without manufacturing dedicated chips. Due to their programmable nature, FPGAs have been prevalent in the large majority of modern systems. This raises high demands for verifying the security of circuit implementations on FPGAs, since they are vulnerable to hardware trojans (HTs) that can be inserted through modified configuration files. In this article, we propose an on-chip security framework to ensure the trustworthiness of circuit implementations on FPGAs at runtime. The core of the framework is a time-to-digital converter (TDC)-based hardware security primitive that can be predeployed on FPGAs to verify whether the FPGA-based designs are tampered with or corrupted by HTs. The parameter-adjustable TDC sensor, which is the primary component of the primitive, is carefully designed, adjusted, and implemented, thus the TDC sensor can monitor the transient voltage fluctuations within FPGAs with a high resolution. Versus statistical data analysis, tiny abnormal variations introduced by the Trojan insertion and activation are distinguished. Experimental results on Xilinx Spartan-6 FPGAs demonstrate the effectiveness of the proposed TDC-based on-chip trust evaluation framework and HT detection method.

David Spielmann,Ognjen Glamočanin,Mirjana Stojilović

DOI: https://doi.org/10.46586/tches.v2023.i2.543-567

2023-03-06

IACR Transactions on Cryptographic Hardware and Embedded Systems

Abstract:State-of-the-art sensors for measuring FPGA voltage fluctuations are time-to-digital converters (TDCs). They allow detecting voltage fluctuations in the order of a few nanoseconds. The key building component of a TDC is a delay line, typically implemented as a chain of fast carry propagation multiplexers. In FPGAs, the fast carry chains are constrained to dedicated logic and routing, and need to be routed strictly vertically. In this work, we present an alternative approach to designing on-chip voltage sensors, in which the FPGA routing resources replace the carry logic. We present three variants of what we name a routing delay sensor (RDS): one vertically constrained, one horizontally constrained, and one free of any constraints. We perform a thorough experimental evaluation on both the Sakura-X side-channel evaluation board and the Alveo U200 datacenter card, to evaluate the performance of RDS sensors in the context of a remote power side-channel analysis attack. The results show that our best RDS implementation in most cases outperforms the TDC. On average, for breaking the full 128-bit key of an AES-128 cryptographic core, an adversary requires 35% fewer side-channel traces when using the RDS than when using the TDC. Besides making the attack more effective, given the absence of the placement and routing constraint, the RDS sensor is also easier to deploy.

Lu Zhang,Dejun Mu,Jingyu Wang,Ruoyang Liu,Yifan He,Yaolei Li,Yu Tai,Shengbing Zhang,Xiaoya Fan,Huazhong Yang,Yongpan Liu

DOI: https://doi.org/10.1109/tcad.2024.3394372

2024-01-01

Abstract:As domain-specific training data is recognized as valuable intellectual property, acquiring well-trained weights in convolutional neural networks (CNN) has emerged as a new threat to the neural network design community. To design a CNN accelerator that is resilient to side-channel threats, it is crucial to have an accurate and efficient security-driven framework at the early design stage. However, there is no standard way to perform root-cause analysis on the power side channel that exists in FPGA-based CNN accelerators. Therefore, we build RE-Specter, , a framework that facilitates security-driven design space exploration (DSE) across various building components, combination patterns, and parallelism configurations in CNNs. The goal is to fully understand the power side-channel effects resulting from architectural modifications or optimization decisions. We further compare the benchmarks considering precision, resource utilization, and power side-channel leakage. Finally, we experimentally explore the design space of various architectural features. The experimental results show that low-bit precision delivers more secure architectures (68.9x x among DSPs, 2439x x among LUTs) in measurement-to-disclosure (MTD), but mixed- precision strategies are necessary to maintain the model accuracy. For loop optimization, in 16-parallel scenario, accumulator-based architecture outperforms the architecture featuring an adder tree with the improvements of 8.28x in MTD and 1.38x in PST.

Chen Jun,Wang Yonggang,Huang Dajun,Zhang Lijun,Zhu Wensong

DOI: https://doi.org/10.1109/IMTC.2011.5944043

2011-01-01

Abstract:The basic principle of nuclear radiation detection is converting the incident ray to the measurable electrical signal by a detector. Reading and digitizing signals from detectors is the first step of nuclear signal processing, and often the most important step. We present a novel method for nuclear pulse amplitude digitizing which possibly realizes high integration multiple channels with an FPGA. The method first transfers the amplitudes into time intervals by modifying the shape of decay edge linearly, and then the time intervals are measured by TDC realized inside of FPGA. Since FPGA based multi-channel TDC techniques can be integrated inside of an FPGA, our method is quite promising to realize multi-channel digitization for nuclear pulses which is very crucial to detectors for nuclear imaging. In the paper, we concentrate the designs of key circuits, including pulse width modulation, TDC, constant fraction discrimination timing. Through a prototype implementation, we verified our design, investigate the factors which could influence the performance of this new method, and exploit a number of possibilities to use resources of the FPGA to enhance the integration for multi-channel design.

Chong Liu,Yonggang Wang

DOI: https://doi.org/10.1109/tns.2015.2421319

IF: 1.703

2015-01-01

IEEE Transactions on Nuclear Science

Abstract:Recent investigations of Field Programmable Gate Array (FPGA)-based time-to-digital converters (TDCs) have predominantly focused on improving the time resolution of the device. However, the monolithic integration of multi-channel TDCs and the achievement of high measurement throughput remain challenging issues for certain applications. In this paper, the potential of the resources provided by the Kintex-7 Xilinx FPGA is fully explored, and a new design is proposed for the implementation of a high performance multi-channel TDC system on this FPGA. Using the tapped-delay-line wave union TDC architecture, in which a negative pulse is triggered by the hit signal propagating along the carry chain, two time measurements are performed in a single carry chain within one clock cycle. The differential non-linearity and time resolution can be significantly improved by realigning the bins. The on-line calibration and on-line updating of the calibration table reduce the influence of variations of environmental conditions. The logic resources of the 6-input look-up tables in the FPGA are employed for hit signal edge detection and bubble-proof encoding, thereby allowing the TDC system to operate at the maximum allowable clock rate of the FPGA and to achieve the maximum possible measurement throughput. This resource-efficient design, in combination with a modular implementation, makes the integration of multiple channels in one FPGA practicable. Using our design, a 128-channel TDC with a dead time of 1.47 ns, a dynamic range of 360 ns, and a root-mean-square resolution of less than 10 ps was implemented in a single Kintex-7 device.