当前位置:
X-MOL 学术
›
ACM Trans. Des. Autom. Electron. Syst.
›
论文详情
Our official English website, www.x-mol.net, welcomes your
feedback! (Note: you will need to create a separate account there.)
Reconfigurable Network-on-Chip Security Architecture
ACM Transactions on Design Automation of Electronic Systems ( IF 2.2 ) Pub Date : 2020-08-25 , DOI: 10.1145/3406661 Subodha Charles 1 , Prabhat Mishra 1
ACM Transactions on Design Automation of Electronic Systems ( IF 2.2 ) Pub Date : 2020-08-25 , DOI: 10.1145/3406661 Subodha Charles 1 , Prabhat Mishra 1
Affiliation
Growth of the Internet-of-things has led to complex system-on-chips (SoCs) being used in the edge devices in IoT applications. The increased complexity is demanding designers to consider several critical factors, such as dynamic requirement changes, long application life, mass production, and tight time-to-market deadlines. These requirements lead to more complex security concerns. SoC manufacturers outsource some of the intellectual property cores integrated on the SoC to untrusted third-party vendors. The untrusted intellectual properties can contain malicious implants, which can launch attacks using the resources provided by the on-chip interconnection network, commonly known as the network-on-chip (NoC). Existing efforts on securing NoC have considered lightweight encryption, authentication, and other attack detection mechanisms such as denial-of-service and buffer overflows. Unfortunately, these approaches focus on designing statically optimized security solutions. As a result, they are not suitable for many IoT systems with long application life and dynamic requirement changes. There is a critical need to design reconfigurable security architectures that can be dynamically tuned based on changing requirements. In this article, we propose a tier-based reconfigurable security architecture that can adapt to different use-case scenarios. We explore how to design an efficient reconfigurable architecture that can support three popular NoC security mechanisms (encryption, authentication, and denial-of-service attack detection and localization) and implement suitable dynamic reconfiguration techniques. We evaluate our proposed framework by running standard benchmarks enabling different tiers of security and provide a comprehensive analysis of how different levels of security can affect application performance, energy efficiency, and area overhead.
中文翻译:
可重构的片上网络安全架构
物联网的发展导致复杂的片上系统 (SoC) 被用于物联网应用的边缘设备。复杂性的增加要求设计人员考虑几个关键因素,例如动态需求变化、较长的应用寿命、大规模生产和紧迫的上市期限。这些要求导致更复杂的安全问题。SoC 制造商将一些集成在 SoC 上的知识产权内核外包给不受信任的第三方供应商。不受信任的知识产权可能包含恶意植入物,这些植入物可以利用片上互连网络(俗称片上网络(NoC))提供的资源发起攻击。保护 NoC 的现有努力已经考虑了轻量级加密、身份验证、以及其他攻击检测机制,例如拒绝服务和缓冲区溢出。不幸的是,这些方法专注于设计静态优化的安全解决方案。因此,它们不适用于许多应用寿命长且需求动态变化的物联网系统。迫切需要设计可根据不断变化的需求动态调整的可重新配置的安全架构。在本文中,我们提出了一种基于层的可重构安全架构,可以适应不同的用例场景。我们探索如何设计一个高效的可重构架构,以支持三种流行的 NoC 安全机制(加密、身份验证和拒绝服务攻击检测和本地化),并实施合适的动态重构技术。
更新日期:2020-08-25
中文翻译:
可重构的片上网络安全架构
物联网的发展导致复杂的片上系统 (SoC) 被用于物联网应用的边缘设备。复杂性的增加要求设计人员考虑几个关键因素,例如动态需求变化、较长的应用寿命、大规模生产和紧迫的上市期限。这些要求导致更复杂的安全问题。SoC 制造商将一些集成在 SoC 上的知识产权内核外包给不受信任的第三方供应商。不受信任的知识产权可能包含恶意植入物,这些植入物可以利用片上互连网络(俗称片上网络(NoC))提供的资源发起攻击。保护 NoC 的现有努力已经考虑了轻量级加密、身份验证、以及其他攻击检测机制,例如拒绝服务和缓冲区溢出。不幸的是,这些方法专注于设计静态优化的安全解决方案。因此,它们不适用于许多应用寿命长且需求动态变化的物联网系统。迫切需要设计可根据不断变化的需求动态调整的可重新配置的安全架构。在本文中,我们提出了一种基于层的可重构安全架构,可以适应不同的用例场景。我们探索如何设计一个高效的可重构架构,以支持三种流行的 NoC 安全机制(加密、身份验证和拒绝服务攻击检测和本地化),并实施合适的动态重构技术。
京公网安备 11010802027423号