LifeLine for FPGA Protection: Obfuscated Cryptography for Real-World Security

Authors

  • Florian Stolz Ruhr University Bochum, Horst Görtz Institute for IT Security, Germany
  • Nils Albartus Ruhr University Bochum, Horst Görtz Institute for IT Security, Germany
  • Julian Speith Ruhr University Bochum, Horst Görtz Institute for IT Security, Germany; Max Planck Institute for Security and Privacy, Bochum, Germany
  • Simon Klix Ruhr University Bochum, Horst Görtz Institute for IT Security, Germany
  • Clemens Nasenberg Max Planck Institute for Security and Privacy, Bochum, Germany
  • Aiden Gula University of Massachusetts Amherst, MA, USA
  • Marc Fyrbiak Max Planck Institute for Security and Privacy, Bochum, Germany; emproof, Bochum, Germany
  • Christof Paar Ruhr University Bochum, Horst Görtz Institute for IT Security, Germany; Max Planck Institute for Security and Privacy, Bochum, Germany
  • Tim Güneysu Ruhr University Bochum, Horst Görtz Institute for IT Security, Germany
  • Russell Tessier University of Massachusetts Amherst, MA, USA

DOI:

https://doi.org/10.46586/tches.v2021.i4.412-446

Keywords:

FPGA Security, Hardware Obfuscation, Software Obfuscation, Reverse Engineering

Abstract

Over the last decade attacks have repetitively demonstrated that bitstream protection for SRAM-based FPGAs is a persistent problem without a satisfying solution in practice. Hence, real-world hardware designs are prone to intellectual property infringement and malicious manipulation as they are not adequately protected against reverse-engineering.
In this work, we first review state-of-the-art solutions from industry and academia and demonstrate their ineffectiveness with respect to reverse-engineering and design manipulation. We then describe the design and implementation of novel hardware obfuscation primitives based on the intrinsic structure of FPGAs. Based on our primitives, we design and implement LifeLine, a hardware design protection mechanism for FPGAs using hardware/software co-obfuscated cryptography. We show that LifeLine offers effective protection for a real-world adversary model, requires minimal integration effort for hardware designers, and retrofits to already deployed (and so far vulnerable) systems.

Downloads

Published

2021-08-11

Issue

Volume 2021, Issue 4

Section

Articles

License

Copyright (c) 2021 Florian Stolz, Nils Albartus, Julian Speith, Simon Klix, Clemens Nasenberg, Aiden Gula, Marc Fyrbiak, Christof Paar, Tim Güneysu, Russell Tessier

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

How to Cite

LifeLine for FPGA Protection: Obfuscated Cryptography for Real-World Security. (2021). IACR Transactions on Cryptographic Hardware and Embedded Systems, 2021(4), 412-446. https://doi.org/10.46586/tches.v2021.i4.412-446