Hardware security without secure hardware: How to decrypt with a password and a server

Cloud computing is an important innovation of current computing models. At present, the research on the security of cloud computing is mainly concentrated on PCs and servers. The security of embedded system in cloud environment does not win enough attention. This paper analysis the security threats of it, and proposes a Secure Hardware Model to provide a tamper-resistant and more reliable hardware embedded platform in cloud environment. Our model adds some new components to traditional embedded system, controls the start sequence of platform’s components, verifies the integrity of crucial information for embedded platform and recovers the system if necessary. Our implementation demonstrates the feasibility of Secure Hardware Model, it enhance the secure and reliable boot of embedded system. With the constant development and application of embedded system in cloud computing field, our research will influence cloud computing greatly.

Download Full-text

Hardware Security in IoT Devices with Emphasis on Hardware Trojans

Journal of Sensor and Actuator Networks ◽

10.3390/jsan8030042 ◽

2019 ◽

Vol 8 (3) ◽

pp. 42 ◽

Cited By ~ 4

Author(s):

Simranjeet Sidhu ◽

Bassam J. Mohd ◽

Thaier Hayajneh

Keyword(s):

Manufacturing Process ◽

Software Security ◽

Hardware Security ◽

Cloud Security ◽

Hardware Trojans ◽

Software Network ◽

Secure Hardware ◽

Iot Devices ◽

Security Of Iot

Security of IoT devices is getting a lot of attention from researchers as they are becoming prevalent everywhere. However, implementation of hardware security in these devices has been overlooked, and many researches have mainly focused on software, network, and cloud security. A deeper understanding of hardware Trojans (HTs) and protection against them is of utmost importance right now as they are the prime threat to the hardware. This paper emphasizes the need for a secure hardware-level foundation for security of these devices, as depending on software security alone is not adequate enough. These devices must be protected against sophisticated attacks, especially if the groundwork for the attacks is already laid in devices during design or manufacturing process, such as with HTs. This paper will discuss the stealthy nature of these HT, highlight HT taxonomy and insertion methods, and provide countermeasures.

Download Full-text

INTEGRATION OF HARDWARE SECURITY MODULES INTO A DEEPLY EMBEDDED TLS STACK

International Journal of Computing ◽

10.47839/ijc.15.1.827 ◽

2016 ◽

pp. 22-30

Author(s):

Oliver Kehret ◽

Andreas Walz ◽

Axel Sikora

Keyword(s):

Secure Communication ◽

Hardware Security ◽

Transport Layer ◽

Sensor Nodes ◽

Embedded Devices ◽

Secure Hardware ◽

Communication Links ◽

Layer 4 ◽

The Internet Of Things ◽

Hardware Security Modules

The Transport Layer Security (TLS) protocol is a well-established standard for securing communication over insecure communication links, offering layer-4 VPN functionality. In the classical Internet TLS is widely used. With the advances of the Internet of Things (IoT) there is an increasing need to secure communication on resource-constrained embedded devices. On these devices, computation of complex cryptographic algorithms is difficult. Additionally, sensor nodes are physically exposed to attackers. Cryptographic acceleration and secure hardware security modules (HSMs) are possible solutions to these challenges. The usage of specialized cryptographic modules for TLS is not a new phenomenon. However, there are still few hardware security modules suitable for the use on microcontrollers in sensor networks. We therefore present an overview of HSM and TLS solutions along with sample implementations and share some recommendations how to combine both.

Download Full-text

Secure Hardware Design for Trust

10.21236/ada566362 ◽

2012 ◽

Author(s):

Youngok Pino ◽

Garrett S. Rose

Keyword(s):

Hardware Design ◽

Secure Hardware

Download Full-text

Proceedings of the 3rd ACM Workshop on Attacks and Solutions in Hardware Security Workshop - ASHES'19

10.1145/3338508 ◽

2019 ◽

Keyword(s):

Hardware Security

Download Full-text

A vision for autonomous blockchains backed by secure hardware

Proceedings of the 4th Workshop on System Software for Trusted Execution - SysTEX '19 ◽

10.1145/3342559.3365333 ◽

2019 ◽

Author(s):

Kai Mast ◽

Lequn Chen ◽

Emin Gün Sirer

Keyword(s):

Secure Hardware

Download Full-text

Hardware Information Flow Tracking

ACM Computing Surveys ◽

10.1145/3447867 ◽

2021 ◽

Vol 54 (4) ◽

pp. 1-39

Author(s):

Wei Hu ◽

Armaiti Ardeshiricham ◽

Ryan Kastner

Keyword(s):

Access Control ◽

Computer Security ◽

Information Flow ◽

Hardware Security ◽

Computing System ◽

Security Vulnerabilities ◽

Information Flow Tracking ◽

Side Channels ◽

Security Properties ◽

Tools And Techniques

Information flow tracking (IFT) is a fundamental computer security technique used to understand how information moves through a computing system. Hardware IFT techniques specifically target security vulnerabilities related to the design, verification, testing, manufacturing, and deployment of hardware circuits. Hardware IFT can detect unintentional design flaws, malicious circuit modifications, timing side channels, access control violations, and other insecure hardware behaviors. This article surveys the area of hardware IFT. We start with a discussion on the basics of IFT, whose foundations were introduced by Denning in the 1970s. Building upon this, we develop a taxonomy for hardware IFT. We use this to classify and differentiate hardware IFT tools and techniques. Finally, we discuss the challenges yet to be resolved. The survey shows that hardware IFT provides a powerful technique for identifying hardware security vulnerabilities, as well as verifying and enforcing hardware security properties.

Download Full-text