Partial Scan Design Against Scan-Based Side Channel Attacks

Xi Chen; Zhaojun Lu; Gang Qu; Aijiao Cui

doi:10.1109/TrustCom/BigDataSE.2018.00208

Partial Scan Design Against Scan-Based Side Channel Attacks

Xi Chen
, Zhaojun Lu
, Gang Qu
, Aijiao Cui

University of Maryland, College Park

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

12 Scopus citations

Abstract

Testing is essential to isolate good chips from faulty ones. Scan chain, which provides test engineer access to all the flip flops in the chip, is the backbone of industrial testing methods. However, attackers can also leverage the controllability and observability of scan chain as a side channel to break systems such as cryptographic chips. In this paper, we develop a partial scan chain based approach to prevent side channel attacks. The basic idea is to remove the flip flops that store sensitive information from the full scan chain. However, the challenge is how to keep the full test coverage as we demonstrate that using industrial design tools such as traditional partial scan not only fails to provide full fault coverage, but also incurs huge overhead in test time and test vector generation time. We use a novel finite state machine (FSM) structure to deliver secure controllability of the un-chained flip flops to test engineers while using lightweight LFSR and XOR to enable the observability. We conduct experiments to demonstrate that the proposed partial scan, comparing to the full scan, gives full test coverage with reduced test time and does not need to re-generate test vectors.

Original language	English
Title of host publication	Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	1484-1489
Number of pages	6
ISBN (Print)	9781538643877
DOIs	https://doi.org/10.1109/TrustCom/BigDataSE.2018.00208
State	Published - 5 Sep 2018
Externally published	Yes
Event	17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 - New York, United States Duration: 31 Jul 2018 → 3 Aug 2018

Publication series

Name	Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018

Conference

Conference	17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018
Country/Territory	United States
City	New York
Period	31/07/18 → 3/08/18

Keywords

Hardware Security
Partial Scan
Scan Chain
Secure Scan Design
Side Channel Attack

Access to Document

10.1109/TrustCom/BigDataSE.2018.00208

Cite this

Chen, X., Lu, Z., Qu, G., & Cui, A. (2018). Partial Scan Design Against Scan-Based Side Channel Attacks. In Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 (pp. 1484-1489). Article 8456077 (Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00208

Chen, Xi ; Lu, Zhaojun ; Qu, Gang et al. / Partial Scan Design Against Scan-Based Side Channel Attacks. Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 1484-1489 (Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018).

@inproceedings{3f39269a2c264ff687d14d8fb4c248c4,

title = "Partial Scan Design Against Scan-Based Side Channel Attacks",

abstract = "Testing is essential to isolate good chips from faulty ones. Scan chain, which provides test engineer access to all the flip flops in the chip, is the backbone of industrial testing methods. However, attackers can also leverage the controllability and observability of scan chain as a side channel to break systems such as cryptographic chips. In this paper, we develop a partial scan chain based approach to prevent side channel attacks. The basic idea is to remove the flip flops that store sensitive information from the full scan chain. However, the challenge is how to keep the full test coverage as we demonstrate that using industrial design tools such as traditional partial scan not only fails to provide full fault coverage, but also incurs huge overhead in test time and test vector generation time. We use a novel finite state machine (FSM) structure to deliver secure controllability of the un-chained flip flops to test engineers while using lightweight LFSR and XOR to enable the observability. We conduct experiments to demonstrate that the proposed partial scan, comparing to the full scan, gives full test coverage with reduced test time and does not need to re-generate test vectors.",

keywords = "Hardware Security, Partial Scan, Scan Chain, Secure Scan Design, Side Channel Attack",

author = "Xi Chen and Zhaojun Lu and Gang Qu and Aijiao Cui",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018 ; Conference date: 31-07-2018 Through 03-08-2018",

year = "2018",

month = sep,

day = "5",

doi = "10.1109/TrustCom/BigDataSE.2018.00208",

language = "英语",

isbn = "9781538643877",

series = "Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "1484--1489",

booktitle = "Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018",

address = "美国",

}

Chen, X, Lu, Z, Qu, G & Cui, A 2018, Partial Scan Design Against Scan-Based Side Channel Attacks. in Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018., 8456077, Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018, Institute of Electrical and Electronics Engineers Inc., pp. 1484-1489, 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018, New York, United States, 31/07/18. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00208

Partial Scan Design Against Scan-Based Side Channel Attacks. / Chen, Xi; Lu, Zhaojun; Qu, Gang et al.
Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018. Institute of Electrical and Electronics Engineers Inc., 2018. p. 1484-1489 8456077 (Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Partial Scan Design Against Scan-Based Side Channel Attacks

AU - Chen, Xi

AU - Lu, Zhaojun

AU - Qu, Gang

AU - Cui, Aijiao

PY - 2018/9/5

Y1 - 2018/9/5

N2 - Testing is essential to isolate good chips from faulty ones. Scan chain, which provides test engineer access to all the flip flops in the chip, is the backbone of industrial testing methods. However, attackers can also leverage the controllability and observability of scan chain as a side channel to break systems such as cryptographic chips. In this paper, we develop a partial scan chain based approach to prevent side channel attacks. The basic idea is to remove the flip flops that store sensitive information from the full scan chain. However, the challenge is how to keep the full test coverage as we demonstrate that using industrial design tools such as traditional partial scan not only fails to provide full fault coverage, but also incurs huge overhead in test time and test vector generation time. We use a novel finite state machine (FSM) structure to deliver secure controllability of the un-chained flip flops to test engineers while using lightweight LFSR and XOR to enable the observability. We conduct experiments to demonstrate that the proposed partial scan, comparing to the full scan, gives full test coverage with reduced test time and does not need to re-generate test vectors.

AB - Testing is essential to isolate good chips from faulty ones. Scan chain, which provides test engineer access to all the flip flops in the chip, is the backbone of industrial testing methods. However, attackers can also leverage the controllability and observability of scan chain as a side channel to break systems such as cryptographic chips. In this paper, we develop a partial scan chain based approach to prevent side channel attacks. The basic idea is to remove the flip flops that store sensitive information from the full scan chain. However, the challenge is how to keep the full test coverage as we demonstrate that using industrial design tools such as traditional partial scan not only fails to provide full fault coverage, but also incurs huge overhead in test time and test vector generation time. We use a novel finite state machine (FSM) structure to deliver secure controllability of the un-chained flip flops to test engineers while using lightweight LFSR and XOR to enable the observability. We conduct experiments to demonstrate that the proposed partial scan, comparing to the full scan, gives full test coverage with reduced test time and does not need to re-generate test vectors.

KW - Hardware Security

KW - Partial Scan

KW - Scan Chain

KW - Secure Scan Design

KW - Side Channel Attack

UR - https://www.scopus.com/pages/publications/85054050181

U2 - 10.1109/TrustCom/BigDataSE.2018.00208

DO - 10.1109/TrustCom/BigDataSE.2018.00208

M3 - 会议稿件

AN - SCOPUS:85054050181

SN - 9781538643877

T3 - Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018

SP - 1484

EP - 1489

BT - Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018

Y2 - 31 July 2018 through 3 August 2018

ER -

Chen X, Lu Z, Qu G, Cui A. Partial Scan Design Against Scan-Based Side Channel Attacks. In Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 1484-1489. 8456077. (Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018). doi: 10.1109/TrustCom/BigDataSE.2018.00208

Partial Scan Design Against Scan-Based Side Channel Attacks

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this