A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks

Chia Chi Wu, Man Hsuan Kuo, Kuen-Jong Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Scan design is a universal design for test (DFT) technology to increase the observability and controllability of the circuits under test by using scan chains. However, it also leads to a potential security problem that attackers can use scan design as a backdoor to extract confidential information. Researchers have tried to address this problem by using secure scan structures that usually have some keys to confirm the identities of users. However, the traditional methods to store intermediate data or keys in memory are also under high risk of being attacked. In this paper, we propose a dynamic-key secure DFT structure that can defend scan-based and memory attacks without decreasing the system performance and the testability. The main idea is to build a scan design key generator that can generate the keys dynamically instead of storing and using keys in the circuit statically. Only specific patterns derived from the original test patterns are valid to construct the keys and hence the attackers cannot shift in any other patterns to extract correct internal response from the scan chains or retrieve the keys from memory. Analysis results show that the proposed method can achieve a very high security level and the security level will not decrease no matter how many guess rounds the attackers have tried due to the dynamic nature of our method.

Original languageEnglish
Title of host publicationProceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018
PublisherIEEE Computer Society
Pages48-53
Number of pages6
ISBN (Electronic)9781538694664
DOIs
Publication statusPublished - 2018 Dec 6
Event27th IEEE Asian Test Symposium, ATS 2018 - Hefei, China
Duration: 2018 Oct 152018 Oct 18

Publication series

NameProceedings of the Asian Test Symposium
Volume2018-October
ISSN (Print)1081-7735

Other

Other27th IEEE Asian Test Symposium, ATS 2018
CountryChina
CityHefei
Period18-10-1518-10-18

Fingerprint

Data storage equipment
Networks (circuits)
Observability
Controllability

All Science Journal Classification (ASJC) codes

  • Electrical and Electronic Engineering

Cite this

Wu, C. C., Kuo, M. H., & Lee, K-J. (2018). A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks. In Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018 (pp. 48-53). [8567409] (Proceedings of the Asian Test Symposium; Vol. 2018-October). IEEE Computer Society. https://doi.org/10.1109/ATS.2018.00020
Wu, Chia Chi ; Kuo, Man Hsuan ; Lee, Kuen-Jong. / A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks. Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018. IEEE Computer Society, 2018. pp. 48-53 (Proceedings of the Asian Test Symposium).
@inproceedings{bda89815c3e34acc9bf01269efe1e5cb,
title = "A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks",
abstract = "Scan design is a universal design for test (DFT) technology to increase the observability and controllability of the circuits under test by using scan chains. However, it also leads to a potential security problem that attackers can use scan design as a backdoor to extract confidential information. Researchers have tried to address this problem by using secure scan structures that usually have some keys to confirm the identities of users. However, the traditional methods to store intermediate data or keys in memory are also under high risk of being attacked. In this paper, we propose a dynamic-key secure DFT structure that can defend scan-based and memory attacks without decreasing the system performance and the testability. The main idea is to build a scan design key generator that can generate the keys dynamically instead of storing and using keys in the circuit statically. Only specific patterns derived from the original test patterns are valid to construct the keys and hence the attackers cannot shift in any other patterns to extract correct internal response from the scan chains or retrieve the keys from memory. Analysis results show that the proposed method can achieve a very high security level and the security level will not decrease no matter how many guess rounds the attackers have tried due to the dynamic nature of our method.",
author = "Wu, {Chia Chi} and Kuo, {Man Hsuan} and Kuen-Jong Lee",
year = "2018",
month = "12",
day = "6",
doi = "10.1109/ATS.2018.00020",
language = "English",
series = "Proceedings of the Asian Test Symposium",
publisher = "IEEE Computer Society",
pages = "48--53",
booktitle = "Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018",
address = "United States",

}

Wu, CC, Kuo, MH & Lee, K-J 2018, A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks. in Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018., 8567409, Proceedings of the Asian Test Symposium, vol. 2018-October, IEEE Computer Society, pp. 48-53, 27th IEEE Asian Test Symposium, ATS 2018, Hefei, China, 18-10-15. https://doi.org/10.1109/ATS.2018.00020

A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks. / Wu, Chia Chi; Kuo, Man Hsuan; Lee, Kuen-Jong.

Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018. IEEE Computer Society, 2018. p. 48-53 8567409 (Proceedings of the Asian Test Symposium; Vol. 2018-October).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks

AU - Wu, Chia Chi

AU - Kuo, Man Hsuan

AU - Lee, Kuen-Jong

PY - 2018/12/6

Y1 - 2018/12/6

N2 - Scan design is a universal design for test (DFT) technology to increase the observability and controllability of the circuits under test by using scan chains. However, it also leads to a potential security problem that attackers can use scan design as a backdoor to extract confidential information. Researchers have tried to address this problem by using secure scan structures that usually have some keys to confirm the identities of users. However, the traditional methods to store intermediate data or keys in memory are also under high risk of being attacked. In this paper, we propose a dynamic-key secure DFT structure that can defend scan-based and memory attacks without decreasing the system performance and the testability. The main idea is to build a scan design key generator that can generate the keys dynamically instead of storing and using keys in the circuit statically. Only specific patterns derived from the original test patterns are valid to construct the keys and hence the attackers cannot shift in any other patterns to extract correct internal response from the scan chains or retrieve the keys from memory. Analysis results show that the proposed method can achieve a very high security level and the security level will not decrease no matter how many guess rounds the attackers have tried due to the dynamic nature of our method.

AB - Scan design is a universal design for test (DFT) technology to increase the observability and controllability of the circuits under test by using scan chains. However, it also leads to a potential security problem that attackers can use scan design as a backdoor to extract confidential information. Researchers have tried to address this problem by using secure scan structures that usually have some keys to confirm the identities of users. However, the traditional methods to store intermediate data or keys in memory are also under high risk of being attacked. In this paper, we propose a dynamic-key secure DFT structure that can defend scan-based and memory attacks without decreasing the system performance and the testability. The main idea is to build a scan design key generator that can generate the keys dynamically instead of storing and using keys in the circuit statically. Only specific patterns derived from the original test patterns are valid to construct the keys and hence the attackers cannot shift in any other patterns to extract correct internal response from the scan chains or retrieve the keys from memory. Analysis results show that the proposed method can achieve a very high security level and the security level will not decrease no matter how many guess rounds the attackers have tried due to the dynamic nature of our method.

UR - http://www.scopus.com/inward/record.url?scp=85060028126&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85060028126&partnerID=8YFLogxK

U2 - 10.1109/ATS.2018.00020

DO - 10.1109/ATS.2018.00020

M3 - Conference contribution

AN - SCOPUS:85060028126

T3 - Proceedings of the Asian Test Symposium

SP - 48

EP - 53

BT - Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018

PB - IEEE Computer Society

ER -

Wu CC, Kuo MH, Lee K-J. A Dynamic-Key Secure Scan Structure Against Scan-Based Side Channel and Memory Cold Boot Attacks. In Proceedings - 2018 IEEE 27th Asian Test Symposium, ATS 2018. IEEE Computer Society. 2018. p. 48-53. 8567409. (Proceedings of the Asian Test Symposium). https://doi.org/10.1109/ATS.2018.00020