Denial-of-Service on FPGA-based Cloud Infrastructure - Attack and Defense

Research output: Contribution to journalArticlepeer-review

390 Downloads (Pure)


This paper presents attacks targeting the FPGAs of AWS F1 instances at the electrical level through power-hammering, where excessive dynamic power is used to crash FPGA instances. We demonstrate different power-hammering attacks that pass all AWS security fences implemented on F1 instances, including the FPGA vendor design rule checks. In addition, we fingerprint the FPGA instances to observe the responsiveness of the instances, which indicates a successful denial-of-service attack. Most importantly, we provide an FPGA virus scanner framework, which was improved to support large datacenter FPGAs for preventing such attacks, including virtually all currently demonstrated side-channel attacks. Our experiments showed that an AWS F1 instance crashes immediately by starting an FPGA design demanding 369W. By using FPGA-fingerprinting, we found that crashed instances are unavailable for about one to over 200 hours.
Original languageEnglish
Pages (from-to)441-464
JournalIACR Transactions on Cryptographic Hardware and Embedded Systems (TCHES)
Issue number3
Publication statusPublished - 9 Jul 2021


  • FPGAs
  • Power-Hammering
  • Denial-of-Service
  • AWS


Dive into the research topics of 'Denial-of-Service on FPGA-based Cloud Infrastructure - Attack and Defense'. Together they form a unique fingerprint.

Cite this