基于概率签名的硬件木马检测技术

doi:10.3969/j.issn.1000-3428.2014.03.004

计算机工程

基于概率签名的硬件木马检测技术

郑朝霞，李一帆，余良，田园，刘政林

(华中科技大学光学与电子信息学院，武汉 430074)

收稿日期:2013-08-09 出版日期:2014-03-15 发布日期:2014-03-13
作者简介:郑朝霞(1975－)，女，副教授、博士，主研方向：SoC及其安全技术；李一帆、余良、田园，硕士研究生；刘政林，教授、博士。
基金资助:
国家自然科学基金资助项目(61006020)。

Hardware Trojan Detection Technology Based on Probabilistic Signature

ZHENG Zhao-xia, LI Yi-fan, YU Liang, TIAN Yuan, LIU Zheng-lin

(School of Optical and Electronic Information, Huazhong University of Science and Technology, Wuhan 430074, China)

Received:2013-08-09 Online:2014-03-15 Published:2014-03-13

摘要/Abstract

摘要：

针对集成电路芯片被植入硬件木马后带来的安全问题，提出一种基于概率签名的硬件木马检测技术。通过逻辑功能检测，采用随机算法构建芯片电路(布尔函数)的概率签名，作为唯一的识别符模板，当被测电路的签名与模板不匹配时发出告警。设计全加器和AES加密2款电路，植入常见硬件木马并进行攻击实验，对这2种电路的原始电路以及植入硬件木马后电路的概率签名是否发生改变进行理论分析与研究。采用统计学参数估计法在FPGA平台进行实验，结果表明，该概率签名技术能检测出一般规模组合逻辑电路中植入的硬件木马，置信度达到95%。

关键词: 集成电路芯片, 硬件安全, 硬件木马, 概率签名, AES加密

Abstract:

Trojan circuits can bypass traditional defensive techniques as they occupy a layer below the entire software stack. This paper proposes a hardware trojan detection technology based on probabilistic signature. Based on logic detection technology, using random and hypothesis algorithm, this paper constructs the probability signature of circuits(Boolean functions), as the unique identifier template. When the signature of circuit under test does not match the template, an alarm is launched. It designs two circuits that implement full adder and AES encryption, and then they are implanted with common hardware Trojan. It makes in-depth theoretical analysis and research on whether the probabilistic signature of the circuits implanted with hardware Trojans is changed in comparison with the two kinds of original circuits. It tests the circuits based on FPGA platform via probabilistic method. As a result, it is verified that based on the probability signature, it can easily achieve a 95% level of confidence on the detection of hardware Trojans implanted into the combinational logic circuits.

Key words: integrated circuit chip, hardware security, hardware trojan, probabilistic signature, AES encryption

中图分类号:

TN452

郑朝霞，李一帆，余良，田园，刘政林. 基于概率签名的硬件木马检测技术[J]. 计算机工程, doi: 10.3969/j.issn.1000-3428.2014.03.004.

ZHENG Zhao-xia, LI Yi-fan, YU Liang, TIAN Yuan, LIU Zheng-lin. Hardware Trojan Detection Technology Based on Probabilistic Signature[J]. Computer Engineering, doi: 10.3969/j.issn.1000-3428.2014.03.004.

http://www.ecice06.com/CN/Y2014/V40/I3/18

参考文献

参考文献 [1] Wolff F, Papachristou C, Bhunia S, et al. Towards Trojan-free Trusted ICs: Problem Analysis and Detection Scheme[C]// Proc. of Conference on Design, Automation and Test in Europe. Munich, Germany: IEEE Press, 2008. [2] King S T, Tucek J, Cozzie A, et al. Designing and Imple- menting Malicious Hardware[C]//Proc. of the 1st USENIX Workshop on Large-scale Exploits and Emergent Threats. San Franciso, USA: IEEE Press, 2008. [3] Alkabani Y, Koushanfar F. Extended Abstract: Designer’s Hardware Trojan Horse[C]//Proc. of IEEE International Workshop on Hardware-oriented Security and Trust. Anaheim, USA: IEEE Press, 2008. [4] Ratanpal G B, Williams R D, Blalock T N. An On-chip Signal Suppression Countermeasure to Power Analysis Attacks[J]. IEEE Transactions on Dependable and Secure Computing, 2004, 1(3): 179-189. [5] Rad R, Plusquellic J, Tehranipoor M. Sensitivity Analysis to Hardware Trojans Using Power Supply Transient Signals[C]// Proc. of IEEE International Workshop on Hardware-oriented Security and Trust. Anaheim, USA: IEEE Press, 2008. [6] Agrawal D, Baktir S, Karakoyunlu D, et al. Trojan Detection Using IC Fignerprinting[C]//Proc. of IEEE Symposim on Security and Privacy. Oakland, USA: IEEE Press, 2007. [7] Jha S, Jha S K. Randomization Based Probabilistic Approach to Detect Trojan Circuits[C]//Proc. of the 11th IEEE High Assurance Systems Engineering Symposium. Nanjing, China: IEEE Press, 2008. [8] Wu S C, Wang Chunyao. Peach: A Novel Architecture for Probabilistic Combinational Equivalence Checking[C]//Proc. of IFIP International Conference on Very Large Scale Integration. Nice, France: IEEE Press, 2006. [9] Rivest L, Shamir A, Adleman L. A Method for Obtaining Digital Signature and Public Key Cryptosystems[J]. Communications of the ACM, 1978, 21(2): 120-126. [10] Jain J, Abraham J A, Bitner J R, et a1. Probabilistic Verification of Boolean Functions[J]. Formal Methods in System Design, 1992, 1(1): 61-115. [11] Daemen J, Rijmen V. 高级加密标准(AES)算法: Rijndael的设计[M]. 谷大武, 徐胜波, 译. 北京: 清华大学出版社, 2003. [12] 余良. 数字IC中硬件木马的特性与检测技术研究[D]. 武汉: 华中科技大学, 2012. 编辑任吉慧

[1]	黄姣英, 李胜玉, 高成, 杨达明. 一种时序型总线硬件木马的植入与检测[J]. 计算机工程, 2021, 47(3): 160-165.
[2]	胡涛, 佃松宜, 蒋荣华. 基于长短时记忆神经网络的硬件木马检测[J]. 计算机工程, 2020, 46(7): 110-115.
[3]	李莹,陈岚,周崟灏. 硬件木马旁路检测方法的影响因素研究[J]. 计算机工程, 2019, 45(1): 145-152.
[4]	王建新,王柏人,曲鸣,张磊. 基于改进欧式距离的硬件木马检测[J]. 计算机工程, 2017, 43(6): 92-96.
[5]	倪林,石磊,韩鹍,李少青. 基于特征匹配的IP软核硬件木马检测[J]. 计算机工程, 2017, 43(3): 176-180.
[6]	高振斌,白雪,杨松,何家骥. 基于隐马尔可夫模型的硬件木马检测方法[J]. 计算机工程, 2016, 42(9): 126-131.
[7]	赵毅强,何家骥,杨松,刘沈丰. 集成电路中硬件木马防御技术研究[J]. 计算机工程, 2016, 42(1): 128-132,137.
[8]	冯紫竹,赵毅强,刘长龙. 一种基于时序型硬件木马的IP 版权保护结构[J]. 计算机工程, 2014, 40(9): 19-22.
[9]	刘长龙，赵毅强，史亚峰，冯紫竹. 基于相关性分析的硬件木马检测方法[J]. 计算机工程, 2013, 39(9): 183-185,189.
[10]	袁红林, 张士兵, 杨永杰, 李逶, 蒋华. 可分离性增强的帧同步码射频指纹变换方法[J]. 计算机工程, 2011, 37(20): 7-9.
[11]	邹程, 张鹏, 邓高明, 吴恒旭. 基于功率旁路泄露的硬件木马设计[J]. 计算机工程, 2011, 37(11): 135-137.
[12]	吕鑫;程国胜;许峰;. 基于双线性对的Ad Hoc网络门限身份认证方案[J]. 计算机工程, 2009, 35(1): 147-149.
[13]	肖慧娟;丘水生;邓成良. 基于混沌映射和AES算法的图像加密方案[J]. 计算机工程, 2007, 33(23): 154-155,.
[14]	贾爱库;王彩芬;于成尊;刘军龙. 基于双线性映射的一种前向安全的概率签名方案[J]. 计算机工程, 2007, 33(01): 173-175.

选择文件类型/文献管理软件名称

选择包含的内容

基于概率签名的硬件木马检测技术

Hardware Trojan Detection Technology Based on Probabilistic Signature

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 14

编辑推荐

Metrics

本文评价

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

基于概率签名的硬件木马检测技术

Hardware Trojan Detection Technology Based on Probabilistic Signature

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 14

编辑推荐

Metrics

本文评价