SeReCon: A secure reconfiguration controller for self-reconfigurable systems

Krzysztof Kepa; Fearghal Morgan; Krzysztof Kościuszkiewicz; Tomasz Surmacz

doi:10.1504/IJCCBS.2010.031707

SeReCon: A secure reconfiguration controller for self-reconfigurable systems

Krzysztof Kepa, Fearghal Morgan, Krzysztof Kościuszkiewicz, Tomasz Surmacz

Electrical & Electronic Engineering

Research output: Contribution to a Journal (Peer & Non Peer) › Article › peer-review

16 Citations (Scopus)

Abstract

A risk of covert insertion of circuitry into reconfigurable computing (RC) systems exists. This paper reviews risks of hardware attack on field programmable gate array (FPGA)-based RC systems and proposes a method for secure system credentials generation (unique, random and partially anonymous) and trusted self-reconfiguration, using a secure reconfiguration controller (SeReCon) and partial reconfiguration (PR). SeReCon provides a root of trust (RoT) for RC systems, incorporating novel algorithms for security credentials generation and trusted design verification. Credentials are generated internally, during system certification. The private credential element never leaves the SeReCon security perimeter. To provide integrity-maintaining self-reconfiguration, SeReCon performs analysis of each new IP core structure prior to reconfiguration. An unverified IP core can be used provided that its spatial isolation is retained. SeReCon provides encrypted storage for installed IP cores. Resource usage for a prototype SeReCon system is presented. The protection provided by SeReCon is illustrated in a number of security attack scenarios.

Original language	English
Pages (from-to)	86-103
Number of pages	18
Journal	International Journal of Critical Computer-Based Systems
Volume	1
Issue number	1-3
DOIs	https://doi.org/10.1504/IJCCBS.2010.031707
Publication status	Published - 2010

Keywords

Critical embedded systems
Design assurance
Design integrity
Design security
Field programmable gate array
FPGA
Partial reconfiguration
Reconfigurable computing
Self-reconfiguration
Trusted computing

Access to Document

10.1504/IJCCBS.2010.031707

Cite this

@article{d4623021ac954b2ea000dd2083a32984,

title = "SeReCon: A secure reconfiguration controller for self-reconfigurable systems",

abstract = "A risk of covert insertion of circuitry into reconfigurable computing (RC) systems exists. This paper reviews risks of hardware attack on field programmable gate array (FPGA)-based RC systems and proposes a method for secure system credentials generation (unique, random and partially anonymous) and trusted self-reconfiguration, using a secure reconfiguration controller (SeReCon) and partial reconfiguration (PR). SeReCon provides a root of trust (RoT) for RC systems, incorporating novel algorithms for security credentials generation and trusted design verification. Credentials are generated internally, during system certification. The private credential element never leaves the SeReCon security perimeter. To provide integrity-maintaining self-reconfiguration, SeReCon performs analysis of each new IP core structure prior to reconfiguration. An unverified IP core can be used provided that its spatial isolation is retained. SeReCon provides encrypted storage for installed IP cores. Resource usage for a prototype SeReCon system is presented. The protection provided by SeReCon is illustrated in a number of security attack scenarios.",

keywords = "Critical embedded systems, Design assurance, Design integrity, Design security, Field programmable gate array, FPGA, Partial reconfiguration, Reconfigurable computing, Self-reconfiguration, Trusted computing",

author = "Krzysztof Kepa and Fearghal Morgan and Krzysztof Ko{\'s}ciuszkiewicz and Tomasz Surmacz",

year = "2010",

doi = "10.1504/IJCCBS.2010.031707",

language = "English",

volume = "1",

pages = "86--103",

journal = "International Journal of Critical Computer-Based Systems",

issn = "1757-8779",

publisher = "Inderscience",

number = "1-3",

}

TY - JOUR

T1 - SeReCon

T2 - A secure reconfiguration controller for self-reconfigurable systems

AU - Kepa, Krzysztof

AU - Morgan, Fearghal

AU - Kościuszkiewicz, Krzysztof

AU - Surmacz, Tomasz

PY - 2010

Y1 - 2010

N2 - A risk of covert insertion of circuitry into reconfigurable computing (RC) systems exists. This paper reviews risks of hardware attack on field programmable gate array (FPGA)-based RC systems and proposes a method for secure system credentials generation (unique, random and partially anonymous) and trusted self-reconfiguration, using a secure reconfiguration controller (SeReCon) and partial reconfiguration (PR). SeReCon provides a root of trust (RoT) for RC systems, incorporating novel algorithms for security credentials generation and trusted design verification. Credentials are generated internally, during system certification. The private credential element never leaves the SeReCon security perimeter. To provide integrity-maintaining self-reconfiguration, SeReCon performs analysis of each new IP core structure prior to reconfiguration. An unverified IP core can be used provided that its spatial isolation is retained. SeReCon provides encrypted storage for installed IP cores. Resource usage for a prototype SeReCon system is presented. The protection provided by SeReCon is illustrated in a number of security attack scenarios.

AB - A risk of covert insertion of circuitry into reconfigurable computing (RC) systems exists. This paper reviews risks of hardware attack on field programmable gate array (FPGA)-based RC systems and proposes a method for secure system credentials generation (unique, random and partially anonymous) and trusted self-reconfiguration, using a secure reconfiguration controller (SeReCon) and partial reconfiguration (PR). SeReCon provides a root of trust (RoT) for RC systems, incorporating novel algorithms for security credentials generation and trusted design verification. Credentials are generated internally, during system certification. The private credential element never leaves the SeReCon security perimeter. To provide integrity-maintaining self-reconfiguration, SeReCon performs analysis of each new IP core structure prior to reconfiguration. An unverified IP core can be used provided that its spatial isolation is retained. SeReCon provides encrypted storage for installed IP cores. Resource usage for a prototype SeReCon system is presented. The protection provided by SeReCon is illustrated in a number of security attack scenarios.

KW - Critical embedded systems

KW - Design assurance

KW - Design integrity

KW - Design security

KW - Field programmable gate array

KW - FPGA

KW - Partial reconfiguration

KW - Reconfigurable computing

KW - Self-reconfiguration

KW - Trusted computing

UR - https://www.scopus.com/pages/publications/80455172708

U2 - 10.1504/IJCCBS.2010.031707

DO - 10.1504/IJCCBS.2010.031707

M3 - Article

AN - SCOPUS:80455172708

SN - 1757-8779

VL - 1

SP - 86

EP - 103

JO - International Journal of Critical Computer-Based Systems

JF - International Journal of Critical Computer-Based Systems

IS - 1-3

ER -

SeReCon: A secure reconfiguration controller for self-reconfigurable systems

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this