SoC, why should we care about Fault Injection Attacks?
|
|
|
- Natalie Daniel
- 5 years ago
- Views:
Transcription
1 SoC, why should we care about Fault Injection Attacks? Guillaume BOUFFARD David EL-BAZE with the help of Thomas TROUCHKINE Agence nationale de la sécurité des systèmes d information Journée JAIF PARIS 29 Mai 2018
2 ANSSI? Késako? ANSSI (French Network and Information Security Agency) has InfoSec (and no Intelligence) missions: detect and early react to cyber attacks, prevent threats by supporting the development of trusted products and services, provide reliable advice and support and communicate on information security threats and the related means of protection. These missions concern: governmental entities, companies and the general public. SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 1 / 14
3 From the SE to the SoC Sensitive assets are in and computed on the Secure Element (SE). Secure Element are designed to be tamper-resistant against physical and software attacks. System on Chips (SoC) are everywhere: Automotive Smartphone IoT Secure Element are limited resources devices. For sensitive operations where more resources are required, SoCs are used. SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 2 / 14
4 From the SE to the SoC Sensitive assets are in and computed on the Secure Element (SE). Secure Element are designed to be tamper-resistant against physical and software attacks. System on Chips (SoC) are everywhere: Automotive Smartphone IoT Secure Element are limited resources devices. For sensitive operations where more resources are required, SoCs are used. What about security of the SoC? SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 2 / 14
5 What s a System On Chip (SoC)? SoC µcontrollers DSPs Timing sources I/O µprocessors Memories Timers ADCs/DACs Why? Less space needed Low power consumption No data storage Package On Package Voltage regulators/pmics Package Stacked RAM Wirebounds Communication BUS FPGA BGA SoC mini PCB SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 3 / 14
6 SoC Manufacturers MSM & APQ (Snapdragon) by Qualcomm Exynos by Samsung MT & Helio by MediaTek Apple A by Apple Tegra by Nvidia Atom by Intel (x86) RK by Fuzhou RockChip Kirin by Hisilicon OMAP by Texas Instrument AML by Amlogic G-series by AMD Allwinner A by Allwinner ARM 91.7 % 8.3 % SoC architectures distribution x86 SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 4 / 14
7 Software-security oriented component (Source: SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 5 / 14
8 Software Impacts The secure enclave runs trusted apps (Source: SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 6 / 14
9 Software Impacts The secure enclave runs trusted apps Rich OS is complex and might have vulnerabilities (Source: SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 6 / 14
10 Software Impacts The secure enclave runs trusted apps Rich OS is complex and might have vulnerabilities Rich OS integrity is ensured by the secure boot step. (Source: SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 6 / 14
11 Software Impacts The secure enclave runs trusted apps Rich OS is complex and might have vulnerabilities Rich OS integrity is ensured by the secure boot step. Rich OS might be jailbreaked (like ios and Android). (Source: SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 6 / 14
12 Software Impacts (Source: The secure enclave runs trusted apps Rich OS is complex and might have vulnerabilities Rich OS integrity is ensured by the secure boot step. Rich OS might be jailbreaked (like ios and Android). Rich OS might break the security of secure enclave area. SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 6 / 14
13 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
14 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline Project Zero attack/drammer ( ) [Vee+16] SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
15 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline Project Zero NaCl/Rowhammer on TrustZone (2015) [Car17] SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
16 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline ClkScrew (2017) [TSS17] SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
17 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM? Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline Controlling PC on ARM (2016) [TSW16] SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
18 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline Attack on PS3 SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
19 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline Attack on Xbox 360 (2015) [Bla15] SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
20 State-of-the-art physical attacks Injection medium Physical target Software target Software security Software RAM Virtual to physical translation table Memory partitioning Glitch voltage Clock Key Cryptography Laser Register Instruction Secure boot EM Bus Return value Execution flow integry BBI Cache Program counter UV MMU User rights Pipeline Laser induced fault on smartphone (2017) [Vas+17] SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 7 / 14
21 Hardware Impacts Cons points for security : Many new components inside the SoC can be targeted : Crypto accelerators, TRNG, Memories, Schedulers, Timers, USB controllers, Radio controllers... Substrate thickness Crypto accelerators may be protected against FI, but what about the rest? Security still have to be a global thing! SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 8 / 14
22 Hardware Impacts Pro points for security : big chips with lot of embedded components not easy to scan (and to find PoI) with classic EM, Laser or BBI attacks, stacked chips complicates the use of conventional ways of injecting faults (Laser two-photons technology?), High operating frequency not easy to sync an attack. Package Stacked RAM Wirebounds BGA SoC mini PCB SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 9 / 14
23 Mixed Attacks Side Channel Cache Attacks, Spectre 1 & 2, Spectre 3 (Meltdown), Spectre 4 (Speculative Store Bypass). Fault Injection Clkscrew Rowhammer, Nethammer... SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 10 / 14
24 ClkScrew Clkscrew DVFS means Dynamic Voltage and Frequency Scaling. It allows a software to change power and frequency parameters. With a corrupted software, you can put the chip into operating borders. SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 11 / 14
25 To Conclude SoCs are widely deployed. SoCs are more and more used to compute sensitive operations. SoCs are complex devices with a large attack area. Can the SoC security level be proved? Thomas TROUCHKINE s PhD thesis on SoC security against physical attacks in progress. SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 12 / 14
26 Questions? Guillaume BOUFFARD David EL BAZE
27 References [Bla15] BlackHat. XBOX 360 Glitching on fault attack. Nov [Car17] Pierre Carru. Attack TrustZone with Rowhammer. In: GreHack (2017). [TSS17] [TSW16] [Vas+17] Adrian Tang, Simha Sethumadhavan, and Salvatore Stolfo. CLKSCREW: Exposing the perils of security-oblivious energy management. Tech. rep. Columbia University, Niek Timmers, Albert Spruyt, and Marc Witteman. Controlling PC on ARM Using Fault Injection. In: 2016 Workshop on Fault Diagnosis and Tolerance in Cryptography, FDTC 2016, Santa Barbara, CA, USA, August 16, IEEE Computer Society, 2016, pp DOI: /FDTC Aurélien Vasselle et al. Laser-induced fault injection on smartphone bypassing the secure boot. In: (Sept. 2017). SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 13 / 14
28 References (cont.) [Vee+16] Victor van der Veen et al. Drammer: Deterministic Rowhammer Attacks on Mobile Platforms. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, Austria, October 24-28, Ed. by Edgar R. Weippl et al. ACM, 2016, pp DOI: / SoC, why should we care about Fault Injection Attacks? G. BOUFFARD, D. EL BAZE Journée JAIF 14 / 14
System-level threats: Dangerous assumptions in modern Product Security. Cristofaro
System-level threats: Dangerous assumptions in modern Product Security Cristofaro Mune (c.mune@pulse-sec.com) @pulsoid Me Cristofaro Mune (@pulsoid) - Product Security Consultant/Researcher - Keywords:
A Developer's Guide to Security on Cortex-M based MCUs
A Developer's Guide to Security on Cortex-M based MCUs 2018 Arm Limited Nazir S Arm Tech Symposia India Agenda Why do we need security? Types of attacks and security assessments Introduction to TrustZone
Secure boot under attack: Simulation to enhance fault injection & defenses
Secure boot under attack: Simulation to enhance fault injection & defenses Martijn Bogaard Senior Security Analyst martijn@riscure.com / @jmartijnb Niek Timmers Principal Security Analyst niek@riscure.com
Security of Embedded Hardware Systems Insight into Attacks and Protection of IoT Devices
Security of Embedded Hardware Systems Insight into Attacks and Protection of IoT Devices Dr. Johann Heyszl, Head of Hardware Security Department Fraunhofer-Institute for Applied and Integrated Security
Smart Grid Embedded Cyber Security: Ensuring Security While Promoting Interoperability
Smart Grid Embedded Cyber Security: Ensuring Security While Promoting Interoperability Communications and Embedded Systems Department Southwest Research Institute Gary Ragsdale, Ph.D., P.E. August 24 25,
Fundamentals of HW-based Security
Fundamentals of HW-based Security Udi Maor CryptoCell-7xx Product Manager Systems and SW Group ARM Tech Forum 2016 - Korea Jun. 28, 2016 What is system security design? Every system design will require
AutoLock: Why Cache Attacks on ARM Are Harder Than You Think
AutoLock: Why Cache Attacks on ARM Are Harder Than You Think Marc Green W, Leandro Rodrigues-Lima F, Andreas Zankl F, Gorka Irazoqui W, Johann Heyszl F, and Thomas Eisenbarth W August 18 th 2017 USENIX
Embedded Systems: Architecture
Embedded Systems: Architecture Jinkyu Jeong (Jinkyu@skku.edu) Computer Systems Laboratory Sungkyunkwan University http://csl.skku.edu ICE3028: Embedded Systems Design, Fall 2018, Jinkyu Jeong (jinkyu@skku.edu)
Trustzone Security IP for IoT
Trustzone Security IP for IoT Udi Maor CryptoCell-7xx product manager Systems & Software Group ARM Tech Forum Singapore July 12 th 2017 Why is getting security right for IoT so important? When our everyday
Securing IoT with the ARM mbed ecosystem
Securing IoT with the ARM mbed ecosystem Xiao Sun / Senior Applications Engineer / ARM ARM mbed Connect / Shenzhen, China December 5, 2016 Lots of interest in IoT security Researchers are looking into
Trusted Execution Environments (TEE) and the Open Trust Protocol (OTrP) Hannes Tschofenig and Mingliang Pei 16 th July IETF 99 th, Prague
Trusted Execution Environments (TEE) and the Open Trust Protocol (OTrP) Hannes Tschofenig and Mingliang Pei 16 th July 2017 -- IETF 99 th, Prague 2 What do we mean by security? Communication Security Aims
The Next Steps in the Evolution of Embedded Processors
The Next Steps in the Evolution of Embedded Processors Terry Kim Staff FAE, ARM Korea ARM Tech Forum Singapore July 12 th 2017 Cortex-M Processors Serving Connected Applications Energy grid Automotive
SECURITY CRYPTOGRAPHY Cryptography Overview Brochure. Cryptography Overview
SECURITY CRYPTOGRAPHY Cryptography Overview Brochure Cryptography Overview DPA-resistant and Standard Cryptographic Hardware Cores DPA (Differential Power Analysis) Resistant Hardware Cores prevent against
Defense against the AnC Attack on BOOM Rui Hou, Xiaoxin Li, Wei Song, Dan Meng
Defense against the AnC Attack on BOOM Rui Hou, Xiaoxin Li, Wei Song, Dan Meng 单击此处编辑母版标题样式 Outline Security vulnerabilities due to resource sharing AnC attack Solution RCL PTE-isolation Security vulnerabilities
Presentation's title
3 rd April 2017 B03 -In-vehicle technology enabler Presentation's title Dominique Bolignano CEO Prove & Run dominique.bolignano@provenrun.com Introducing myself and Prove & Run Dominique Bolignano, previously
WhoamI. Attacking WBC Implementations No con Name 2017
Attacking WBC Implementations No con Name 2017 1 WHO I AM EDUCATION: Computer Science MSc in IT security COMPANY & ROLES: HCE Security Evaluator R&D Engineer WBC project Responsible of Android security
Embedded Systems: Projects
November 2016 Embedded Systems: Projects Davide Zoni PhD email: davide.zoni@polimi.it webpage: home.dei.polimi.it/zoni Contacts & Places Prof. William Fornaciari (Professor in charge) email: william.fornaciari@polimi.it
Escalating Privileges in Linux using Fault Injection. September 25, 2017
Escalating Privileges in Linux using Fault Injection Niek Timmers timmers@riscure.com (@tieknimmers) Cristofaro Mune c.mune@pulse-sec.com (@pulsoid) September 25, 2017 Fault Injection A definition... Introducing
New STM32WB Series MCU with Built-in BLE 5 and IEEE
New STM32WB Series MCU with Built-in BLE 5 and IEEE 802.15.4 Make the Choice of STM32WB Series The 7 keys points to make the difference 2 Open 2.4 GHz radio Multi-protocol Dual-core / Full control Ultra-low-power
Anatomy of a Globally Recursive Embedded LINPACK Benchmark
Anatomy of a Globally Recursive Embedded LINPACK Benchmark Jack Dongarra and Piotr Luszczek Batteries included. Some assembly required. ARM Landscape Architecture ARM11, Cortex A8, A9, A15 ISA ARMv6, ARMv7
How multi-fault injection. of smart cards. Marc Witteman Riscure. Session ID: RR-201 Session Classification: Advanced
How multi-fault injection breaks Title the of Presentation security of smart cards Marc Witteman Riscure Session ID: RR-201 Session Classification: Advanced Imagine you could turn your BART EZ Rider fare
Bringing Android to Secure SDRs
Bringing Android to Secure SDRs David Kleidermacher Frank Vandenberg SDR 11 WinnComm - Europe Agenda Overview Why Android in SDR? Android Security Proposed Architecture Typical red-black architecture for
Spectre, Meltdown, and the Impact of Security Vulnerabilities on your IT Environment. Orin Jeff Melnick
Spectre, Meltdown, and the Impact of Security Vulnerabilities on your IT Environment Orin Thomas @orinthomas Jeff Melnick Jeff.Melnick@Netwrix.com In this session Vulnerability types Spectre Meltdown Spectre
How to protect Automotive systems with ARM Security Architecture
How to protect Automotive systems with ARM Security Architecture Thanks to this app You can manoeuvre The new Forpel Using your smartphone! Too bad it s Not my car Successful products will be attacked
Trusted Platform Modules Automotive applications and differentiation from HSM
Trusted Platform Modules Automotive applications and differentiation from HSM Cyber Security Symposium 2017, Stuttgart Martin Brunner, Infineon Technologies Axiom: Whatever is connected can (and will)
Connecting Securely to the Cloud
Connecting Securely to the Cloud Security Primer Presented by Enrico Gregoratto Andrew Marsh Agenda 2 Presentation Speaker Trusting The Connection Transport Layer Security Connecting to the Cloud Enrico
Secure RISC-V. A FIPS140-2 Compliant Trust Module for Quad 64-bit RISC-V Core Complex
Secure RISC-V A FIPS140-2 Compliant Trust Module for Quad 64-bit RISC-V Core Complex Shumpei Kawasaki, Murthy Vedula, Software Hardware Consulting Group Kesami Hagiwara, Cong-Kha Pham, University of Electro-Communications
INFLUENTIAL OPERATING SYSTEM RESEARCH: SECURITY MECHANISMS AND HOW TO USE THEM CARSTEN WEINHOLD
Faculty of Computer Science Institute of Systems Architecture, Operating Systems Group INFLUENTIAL OPERATING SYSTEM RESEARCH: SECURITY MECHANISMS AND HOW TO USE THEM CARSTEN WEINHOLD OVERVIEW Fundamental
Roadmap Directions for the RISC-V Architecture
Roadmap Directions for the RISC-V Architecture Andes RISC-V Con November 13, 2018 Linley Gwennap, Principal Analyst About Linley Gwennap Founder, principal analyst, The Linley Group Leading vendor of technical
Beyond TrustZone Security Enclaves Reed Hinkel Senior Manager Embedded Security Market Develop
Beyond TrustZone Security Enclaves Reed Hinkel Senior Manager Embedded Security Market Develop Part2 Security Enclaves Tech Seminars 2017 Agenda New security technology for IoT Security Enclaves CryptoIsland
Introduction to ASIC Design
Introduction to ASIC Design Victor P. Nelson ELEC 5250/6250 CAD of Digital ICs Design & implementation of ASICs Oops Not these! Application-Specific Integrated Circuit (ASIC) Developed for a specific application
On the Security Evaluation of the ARM TrustZone Extension in a Heterogeneous SoC
On the Security Evaluation of the ARM TrustZone Extension in a Heterogeneous SoC El Mehdi Benhani, Cédric Marchand, Alain Aubert, Lilian Bossuet To cite this version: El Mehdi Benhani, Cédric Marchand,
iphone Encryption, Apple, and The Feds David darthnull.org
iphone Encryption, Apple, and The Feds David Schuetz @DarthNull darthnull.org NoVA Hackers October 13, 2014 Background Apple s new privacy page, On devices running ios 8 : Apple cannot bypass your passcode
Securing IoT devices with STM32 & STSAFE Products family. Fabrice Gendreau Secure MCUs Marketing & Application Managers EMEA Region
Securing IoT devices with STM32 & STSAFE Products family Fabrice Gendreau Secure MCUs Marketing & Application Managers EMEA Region 2 The leading provider of products and solutions for Smart Driving and
Non-Trusted. software. data. hardware. Open Source Secure World Software Trusted Firmware. Trusted. software. data. Update October 2018
data software Non-Trusted Trusted Open Source Secure World Software Trusted Firmware software Update October 2018 data hardware SPONSORED BY: HOSTED BY: Trusted Firmware with Open Governance Membership
Network Embedded Systems Sensor Networks Fall Hardware. Marcus Chang,
Network Embedded Systems Sensor Networks Fall 2013 Hardware Marcus Chang, mchang@cs.jhu.edu 1 Embedded Systems Designed to do one or a few dedicated and/or specific functions Embedded as part of a complete
IS THERE A HOLE IN YOUR RISC-V SECURITY STACK? JOTHY ROSENBERG DOVER MICROSYSTEMS
IS THERE A HOLE IN YOUR RISC-V SECURITY STACK? JOTHY ROSENBERG DOVER MICROSYSTEMS I understand the difference in destruction is dramatic, but this has a whiff of August 1945. Someone just used a new weapon,
#RSAC #RSAC Thing Thing Thing Thing Thing Thing Edge Edge Gateway Gateway Cut costs Create value Find information in data then act Maintain Things Enrol Authorized Users & Things Authentication
Delivering High-mix, High-volume Secure Manufacturing in the Distribution Channel
Delivering High-mix, High-volume Secure Manufacturing in the Distribution Channel Steve Pancoast Vice President, Engineering Secure Thingz Inc Rajeev Gulati Vice President and CTO Data IO Corporation 1
SECURITY OF CPS: SECURE EMBEDDED SYSTEMS AS A BASIS
SECURITY OF CPS: SECURE EMBEDDED SYSTEMS AS A BASIS Christoph Krauß, christoph.krauss@aisec.fraunhofer.de Dagstuhl Seminar 11441: Science and Engineering of CPS, November 2011 Overview Introduction Securing
DesignWare IP for IoT SoC Designs
DesignWare IP for IoT SoC Designs The Internet of Things (IoT) is connecting billions of intelligent things at our fingertips. The ability to sense countless amounts of information that communicates to
Building blocks for 64-bit Systems Development of System IP in ARM
Building blocks for 64-bit Systems Development of System IP in ARM Research seminar @ University of York January 2015 Stuart Kenny stuart.kenny@arm.com 1 2 64-bit Mobile Devices The Mobile Consumer Expects
Heterogeneous Software Architecture with OpenAMP
Heterogeneous Software Architecture with OpenAMP Shaun Purvis, Xilinx Agenda Heterogeneous SoCs Linux and OpenAMP OpenAMP for HSA Heterogeneous SoCs A System-on-Chip that integrates multiple processor
SAM A5 ARM Cortex - A5 MPUs
SAM A5 ARM Cortex - A5 MPUs Industry s lowest-power MPUs Ideal for secure industry, IoT, wearable applications Operating at 600MHz/945DMIPS with low power consumption, the SAMA5 ARM Cortex-A5 based MPU
Designing Security & Trust into Connected Devices
Designing Security & Trust into Connected Devices Rob Coombs Security Marketing Director TechCon 11/10/15 Agenda Introduction Security Foundations on Cortex-M Security Foundations on Cortex-A Use cases
The Future of Security is in Open Silicon Linux Security Summit 2018
The Future of Security is in Open Silicon Linux Security Summit 2018 Joel Wittenauer - Embedded Software Architect Rambus Cryptography Research August 28, 2018 Agenda About Rambus Cryptography Research
Designing Security & Trust into Connected Devices
Designing Security & Trust into Connected Devices Eric Wang Senior Technical Marketing Manager Shenzhen / ARM Tech Forum / The Ritz-Carlton June 14, 2016 Agenda Introduction Security Foundations on Cortex-A
Computer Architecture!
Informatics 3 Computer Architecture! Dr. Boris Grot and Dr. Vijay Nagarajan!! Institute for Computing Systems Architecture, School of Informatics! University of Edinburgh! General Information! Instructors:!
Ch 1: The Mobile Risk Ecosystem. CNIT 128: Hacking Mobile Devices. Updated
Ch 1: The Mobile Risk Ecosystem CNIT 128: Hacking Mobile Devices Updated 1-12-16 The Mobile Ecosystem Popularity of Mobile Devices Insecurity of Mobile Devices The Mobile Risk Model Mobile Network Architecture
Digital Payments Security Discussion Secure Element (SE) vs Host Card Emulation (HCE) 15 October Frazier D. Evans
Digital Payments Security Discussion Secure Element (SE) vs Host Card Emulation (HCE) 15 October 2014 Frazier D. Evans Evans_Frazier@bah.com There are four key areas that need to be investigated when talking
CSE 127 Computer Security
CSE 127 Computer Security Stefan Savage, Spring 2018, Lecture 19 Hardware Security: Meltdown, Spectre, Rowhammer Vulnerabilities and Abstractions Abstraction Reality Vulnerability Review: ISA and µarchitecture
Kontron s ARM-based COM solutions and software services
Kontron s ARM-based COM solutions and software services Peter Müller Product Line Manager COMs Kontron Munich, 4 th July 2012 Kontron s ARM Strategy Why ARM COMs? How? new markets for mobile applications
ARM instruction sets and CPUs for wide-ranging applications
ARM instruction sets and CPUs for wide-ranging applications Chris Turner Director, CPU technology marketing ARM Tech Forum Taipei July 4 th 2017 ARM computing is everywhere #1 shipping GPU in the world
GlobalPlatform Trusted Execution Environment (TEE) for Mobile
GlobalPlatform Trusted Execution Environment (TEE) for Mobile Kevin Gillick Executive Director, GlobalPlatform @GlobalPlatform_ www.linkedin.com/company/globalplatform GlobalPlatform Overview GlobalPlatform
18-349: Embedded Real-Time Systems Lecture 2: ARM Architecture
18-349: Embedded Real-Time Systems Lecture 2: ARM Architecture Anthony Rowe Electrical and Computer Engineering Carnegie Mellon University Basic Computer Architecture Embedded Real-Time Systems 2 Memory
ARM TrustZone for ARMv8-M for software engineers
ARM TrustZone for ARMv8-M for software engineers Ashok Bhat Product Manager, HPC and Server tools ARM Tech Symposia India December 7th 2016 The need for security Communication protection Cryptography,
RISCV with Sanctum Enclaves. Victor Costan, Ilia Lebedev, Srini Devadas
RISCV with Sanctum Enclaves Victor Costan, Ilia Lebedev, Srini Devadas Today, privilege implies trust (1/3) If computing remotely, what is the TCB? Priviledge CPU HW Hypervisor trusted computing base OS
Designing Security & Trust into Connected Devices
Designing Security & Trust into Connected Devices Eric Wang Sr. Technical Marketing Manager Tech Symposia China 2015 November 2015 Agenda Introduction Security Foundations on ARM Cortex -M Security Foundations
Beyond TrustZone PSA Reed Hinkel Senior Manager Embedded Security Market Development
Beyond TrustZone PSA Reed Hinkel Senior Manager Embedded Security Market Development Part1 - PSA Tech Seminars 2017 Agenda Platform Security Architecture Architecture overview Trusted Firmware-M IoT Threat
New STM32WB Series MCU with built-in Bluetooth 5 and IEEE
New STM32WB Series MCU with built-in Bluetooth 5 and IEEE 802.15.4 Make the Choice of STM32WB Series The 7 keys points to make the difference 2 Open 2.4 GHz radio Multi-protocol Dual-core / Full control
SECURITY FOR CONNECTED OBJECTS. Alain MERLE CEA-LETI
SECURITY FOR CONNECTED OBJECTS Alain MERLE CEA-LETI Alain.merle@cea.fr Source: CISCO, AT&T IOT: SOME FIGURES Cisco predicts 50B of connected object by 2020 X-as-a-service a breakthrough for carrier s business
Smart Antennas and Hypervisor: Enabling Secure Convergence. July 5, 2017
Smart Antennas and : Enabling Secure Convergence July 5, 2017 About OpenSynergy OpenSynergy develops software solutions for embedded automotive systems. OpenSynergy s product portfolio includes key software
SGS CYBER SECURITY GROWTH OPPORTUNITIES
SGS CYBER SECURITY GROWTH OPPORTUNITIES Eric Krzyzosiak GENERAL MANAGER DIGITAL Jeffrey Mc Donald Executive Vice President CERTIFICATION & BUSINESS ENHANCEMENT Eric Lee WIRELESS & CONSUMER RETAIL CYBER
REVISED SYLLABUS UNIT 5
REVISED SYLLABUS UNIT 5 COMMUNICATION TECHNOLOGIES (Networking and Open Source Software) Evolution of Networking: ARPANET, Internet, Interspace Different ways of sending data across the network with reference
ARM Security Solutions and Numonyx Authenticated Flash
ARM Security Solutions and Numonyx Authenticated Flash How to integrate Numonyx Authenticated Flash with ARM TrustZone* for maximum system protection Introduction Through a combination of integrated hardware
Real-Timeness and System Integrity on a Asymmetric Multi Processing configuration
Real-Timeness and System Integrity on a Asymmetric Multi Processing configuration D&E Event November 2nd Relator: Manuele Papais Sales & Marketing Manager 1 DAVE Embedded Systems DAVE Embedded Systems'
RTL2GDS Low Power Convergence for Chip-Package-System Designs. Aveek Sarkar VP, Technology Evangelism, ANSYS Inc.
RTL2GDS Low Power Convergence for Chip-Package-System Designs Aveek Sarkar VP, Technology Evangelism, ANSYS Inc. Electronics Design Complexities Antenna Design and Placement Chip Low Power and Thermal
Safety Security. A security assessment of the resilience against fault injection attacks in ASIL-D certified microcontrollers
Safety Security A security assessment of the resilience against fault injection attacks in ASIL-D certified microcontrollers Nils Wiersma, Ramiro Pareja Riscure Security Lab {wiersma, pareja} @ riscure.com
SIERRAWARE SIERRATEE FOR MIPS OMNISHIELD
SIERRAWARE SIERRATEE FOR MIPS OMNISHIELD Introduction SierraTEE for MIPS OmniShield is a Global Platform compliant Trusted Execution Environment (TEE) designed for devices based on Imagination Technologies'
ECE 471 Embedded Systems Lecture 2
ECE 471 Embedded Systems Lecture 2 Vince Weaver http://web.eece.maine.edu/~vweaver vincent.weaver@maine.edu 7 September 2018 Announcements Reminder: The class notes are posted to the website. HW#1 will
IoT Market: Three Classes of Devices
IoT Market: Three Classes of Devices Typical Silicon BOM PC-Like Embedded Devices ~100 million units ATM, Retail Point of Service Intel Core $100+ Smart Things ~800 million units PLC, Edge Gateway, Thermostat
Surveying the Physical Landscape
Surveying the Physical Landscape UL and the UL logo are trademarks of UL LLC 2017 What do we mean by physical security? Some might think about this Or this Or For this presentation, we mean protection
Heterogeneous Architecture. Luca Benini
Heterogeneous Architecture Luca Benini lbenini@iis.ee.ethz.ch Intel s Broadwell 03.05.2016 2 Qualcomm s Snapdragon 810 03.05.2016 3 AMD Bristol Ridge Departement Informationstechnologie und Elektrotechnik
Multicore computer: Combines two or more processors (cores) on a single die. Also called a chip-multiprocessor.
CS 320 Ch. 18 Multicore Computers Multicore computer: Combines two or more processors (cores) on a single die. Also called a chip-multiprocessor. Definitions: Hyper-threading Intel's proprietary simultaneous
Computer Architecture!
Informatics 3 Computer Architecture! Dr. Boris Grot and Dr. Vijay Nagarajan!! Institute for Computing Systems Architecture, School of Informatics! University of Edinburgh! General Information! Instructors
Trusted Platform Module explained
Bosch Security Systems Video Systems Trusted Platform Module explained What it is, what it does and what its benefits are 3 August 2016 2 Bosch Security Systems Video Systems Table of contents Table of
Breaking Hardware Wallets
Breaking Hardware Wallets Breaking Bitcoin September 2017 Nicolas Bacca @btchip Why Hardware Wallets? - high level overview YES NO Public data Do you want to send 1.337 BTC to 1UnREADABLE Operations on
Tamper Resistance - a Cautionary Note Ross Anderson Markus Kuhn
Tamper Resistance - a Cautionary Note Ross Anderson University of Cambridge Computer Laboratory Markus Kuhn University of Erlangen/ Purdue University Applications of Tamper Resistant Modules Security of
F28HS Hardware-Software Interface: Systems Programming
F28HS Hardware-Software Interface: Systems Programming Hans-Wolfgang Loidl School of Mathematical and Computer Sciences, Heriot-Watt University, Edinburgh Semester 2 2017/18 0 No proprietary software has
Securing Multiple Mobile Platforms
Securing Multiple Mobile Platforms CPU-based Multi Factor Security 2010 Security Workshop ETSI 2010 Security Workshop Navin Govind Aventyn, Inc. Founder and CEO 1 Mobile Platform Security Gaps Software
Demonstration Lecture: Cyber Security (MIT Department) Trusted cloud hardware and advanced cryptographic solutions. Andrei Costin
Demonstration Lecture: Cyber Security (MIT Department) Trusted cloud hardware and advanced cryptographic solutions Topic Prerequisites Security concepts Security-related concepts (e.g., entropy) Virtualization
Securing IoT devices with Hardware Secure Element. Fabrice Gendreau EMEA Secure MCUs Marketing & Application Manager
Securing IoT devices with Hardware Secure Element Fabrice Gendreau EMEA Secure MCUs Marketing & Application Manager 2 A global semiconductor leader 2016 revenues of $6.97B Listed: NYSE, Euronext Paris
Firmware Updates for Internet of Things Devices
Firmware Updates for Internet of Things Devices Brendan Moran, Milosch Meriac, Hannes Tschofenig Drafts: draft-moran-suit-architecture draft-moran-suit-manifest 1 WHY DO WE CARE? 2 IoT needs a firmware
SMARTPHONE HARDWARE: ANATOMY OF A HANDSET. Mainak Chaudhuri Indian Institute of Technology Kanpur Commonwealth of Learning Vancouver
SMARTPHONE HARDWARE: ANATOMY OF A HANDSET Mainak Chaudhuri Indian Institute of Technology Kanpur Commonwealth of Learning Vancouver Outline of topics What is the hardware architecture of a How does communication
Computer Architecture Background
CSE 5095 & ECE 4451 & ECE 5451 Spring 2017 Lecture 2b Computer Architecture Background Marten van Dijk Syed Kamran Haider, Chenglu Jin, Phuong Ha Nguyen Department of Electrical & Computer Engineering
SIDE CHANNEL ANALYSIS : LOW COST PLATFORM. ETSI SECURITY WEEK Driss ABOULKASSIM Jacques FOURNIERI
SIDE CHANNEL ANALYSIS : LOW COST PLATFORM ETSI SECURITY WEEK Driss ABOULKASSIM Jacques FOURNIERI THE CEA Military Applications Division (DAM) Nuclear Energy Division (DEN) Technological Research Division
System-on-Chip Architecture for Mobile Applications. Sabyasachi Dey
System-on-Chip Architecture for Mobile Applications Sabyasachi Dey Email: sabyasachi.dey@gmail.com Agenda What is Mobile Application Platform Challenges Key Architecture Focus Areas Conclusion Mobile Revolution
Embedded Systems. 8. Hardware Components. Lothar Thiele. Computer Engineering and Networks Laboratory
Embedded Systems 8. Hardware Components Lothar Thiele Computer Engineering and Networks Laboratory Do you Remember? 8 2 8 3 High Level Physical View 8 4 High Level Physical View 8 5 Implementation Alternatives
Embedded Systems. Computer Organization. Wednesday 25 November 15
Embedded Systems Computer Organization Wednesday 25 November 15 Summary Previous Class Analog-Digital Interface Today: Embedded Systems Characteristics Architectures Complete Systems Computer Organization
Secure Internet of Things Project Overview. Philip Levis, Faculty Director SITP 2018 Retreat Santa Cruz, CA
Secure Internet of Things Project Overview Philip Levis, Faculty Director SITP 2018 Retreat Santa Cruz, CA Four Years Ago + = Security Disaster HP conducted a security analysis of IoT devices 1 80% had
ARM CORTEX-R52. Target Audience: Engineers and technicians who develop SoCs and systems based on the ARM Cortex-R52 architecture.
ARM CORTEX-R52 Course Family: ARMv8-R Cortex-R CPU Target Audience: Engineers and technicians who develop SoCs and systems based on the ARM Cortex-R52 architecture. Duration: 4 days Prerequisites and related
Innovation is Thriving in Semiconductors
Innovation is Thriving in Semiconductors Mike Muller Chief Technology Officer ARM TechCon Nov 10, 2015 BBC Model B ARM1 ARM Holdings Cortex-M0 BBC micro:bit 1981 1985 1990 2015 Core Tech Transisto r Design
Computing on Low Power SoC Architecture
+ Computing on Low Power SoC Architecture Andrea Ferraro INFN-CNAF Lucia Morganti INFN-CNAF + Outline 2 Modern Low Power Systems on Chip Computing on System on Chip ARM CPU SoC GPU Low Power from Intel
ELCT 912: Advanced Embedded Systems
ELCT 912: Advanced Embedded Systems Lecture 2-3: Embedded System Hardware Dr. Mohamed Abd El Ghany, Department of Electronics and Electrical Engineering Embedded System Hardware Used for processing of
Programmable NICs. Lecture 14, Computer Networks (198:552)
Programmable NICs Lecture 14, Computer Networks (198:552) Network Interface Cards (NICs) The physical interface between a machine and the wire Life of a transmitted packet Userspace application NIC Transport
SMART DEVICES: DO THEY RESPECT YOUR PRIVACY?
SMART DEVICES: DO THEY RESPECT YOUR PRIVACY? Systems and Mobile Research Lab, Department of Computer Science and Engineering INDIAN INSTITUTE OF TECHNOLOGY KHARAGPUR Presenter: Sandip Chakraborty sandipc@cse.iitkgp.ac.in
SmartNICs: Giving Rise To Smarter Offload at The Edge and In The Data Center
SmartNICs: Giving Rise To Smarter Offload at The Edge and In The Data Center Jeff Defilippi Senior Product Manager Arm #Arm Tech Symposia The Cloud to Edge Infrastructure Foundation for a World of 1T Intelligent
Using Virtual Platforms To Improve Software Verification and Validation Efficiency
Using Virtual Platforms To Improve Software Verification and Validation Efficiency Odin Shen Staff FAE Arm Arm Tech Symposia Taiwan 2017 Software complexity and best practices Software Costs Increasing
MICROCIRCUIT SECURITY
MICROCIRCUIT SECURITY Everything begins in the chip. Sawblade Ventures, LLC Austin, Texas Chip Security Vulnerability: How to Close the Gap Between Design Software & Design Hardware CTEA Electronics Symposium
NanoMind Z7000. Datasheet On-board CPU and FPGA for space applications
NanoMind Z7000 Datasheet On-board CPU and FPGA for space applications 1 Table of Contents 1 TABLE OF CONTENTS... 2 2 OVERVIEW... 3 2.1 HIGHLIGHTED FEATURES... 3 2.2 BLOCK DIAGRAM... 4 2.3 FUNCTIONAL DESCRIPTION...