Scan‐based attack tolerance with minimum testability loss: a gate‐level approach
Open Access
- 1 July 2020
- journal article
- research article
- Published by Institution of Engineering and Technology (IET) in IET Information Security
- Vol. 14 (4), 459-469
- https://doi.org/10.1049/iet-ifs.2019.0444
Abstract
Scan chain is an architectural solution to facilitate in-field tests and debugging of digital chips, however, it is also known as a source of security problems, e.g. scan-based attacks in the chips. The authors conduct a comprehensive gate-level security analysis on crypto-chips, which are equipped with a scan chain, and then propose a set of protection mechanisms to immune vulnerable nets of the chips against scan-based attacks. After extracting the set of most vulnerable nets, they perform net pruning algorithms on them, and gate-level protection mechanisms to block the information leaking from the nets during test mode. The protection mechanisms employ net masking, net flipping, and net shuffling based on the specifications of every net, i.e. gate-type driving the net, fan-out of the net, and net's logical depth. Their evaluations on the hardware-implemented advanced encryption standard (AES) and data encryption standard (DES) encryption algorithms show 100% for all types of scan-based attack tolerance, while the area overhead is at most 1.5%, 6.1% for AES and DES crypto-chip, respectively. As they find the smallest set of nets that have a high contribution to the scan attack, the test coverage loss of their protection mechanism is evaluated to be <0.8%.Keywords
This publication has 24 references indexed in Scilit:
- Static and Dynamic Obfuscations of Scan Data Against Scan-Based Side-Channel AttacksIEEE Transactions on Information Forensics and Security, 2016
- A highly nonlinear S-box based on a fractional linear transformationSpringerPlus, 2016
- Model-Based Testing of ObligationsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2014
- Design-for-Security vs. Design-for-Testability: A Case Study on DFT Chain in Cryptographic CircuitsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2014
- Test Versus Security: Past and PresentIEEE Transactions on Emerging Topics in Computing, 2014
- Secure Scan Design with Dynamically Configurable ConnectionPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2013
- Dynamically changeable secure scan architecture against scan-based side channel attackPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2012
- Nexus IEEE 5001Published by Springer Science and Business Media LLC ,2010
- A Scan-Based Attack Based on Discriminators for AES CryptosystemsIEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences, 2009
- Secure Scan: A Design-for-Test Architecture for Crypto ChipsIEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems, 2006