Powerhammering through Glitch Amplification – Attacks and Mitigation

Kaspar Mätas; Tuan La; Khoa Pham; Dirk Koch

doi:10.1109/FCCM48280.2020.00018

Powerhammering through Glitch Amplification – Attacks and Mitigation

Kaspar Mätas, Tuan La, Khoa Pham, Dirk Koch

Research output: Chapter in Book/Conference proceeding › Conference contribution › peer-review

268 Downloads (Pure)

Abstract

Recent work on FPGA hardware security showed a substantial potential risk through power-hammering, which uses high switching activity in order to create excessive dynamic power loads. Virtually all present power-hammering attack scenarios are based on some kind of ring oscillators for which mitigation strategies exist. In this paper, we use a different strategy to create excessive dynamic power consumption: glitch amplification. By carefully designing XOR trees, fast switching wires can be implemented that, while driving high fan-out nets, can draw enough power to crash an FPGA. In addition to the attack (which is crashing an Ultra96 board), we will present a scanner for detecting malicious glitch amplifying FPGA designs.

Original language	English
Title of host publication	Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020
Pages	65-69
Number of pages	5
ISBN (Electronic)	9781728158037
DOIs	https://doi.org/10.1109/FCCM48280.2020.00018
Publication status	Published - 1 May 2020

Publication series

Name	Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020

Access to Document

10.1109/FCCM48280.2020.00018Licence: GNU GPL

fccm20_paper_162Accepted author manuscript, 248 KBLicence: GNU GPL

Cite this

Mätas, K., La, T., Pham, K., & Koch, D. (2020). Powerhammering through Glitch Amplification – Attacks and Mitigation. In Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020 (pp. 65-69). Article 9114608 (Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020). https://doi.org/10.1109/FCCM48280.2020.00018

@inproceedings{2375c49d50da4f99888feb3f4a3061ba,

title = "Powerhammering through Glitch Amplification – Attacks and Mitigation",

abstract = "Recent work on FPGA hardware security showed a substantial potential risk through power-hammering, which uses high switching activity in order to create excessive dynamic power loads. Virtually all present power-hammering attack scenarios are based on some kind of ring oscillators for which mitigation strategies exist. In this paper, we use a different strategy to create excessive dynamic power consumption: glitch amplification. By carefully designing XOR trees, fast switching wires can be implemented that, while driving high fan-out nets, can draw enough power to crash an FPGA. In addition to the attack (which is crashing an Ultra96 board), we will present a scanner for detecting malicious glitch amplifying FPGA designs.",

author = "Kaspar M{\"a}tas and Tuan La and Khoa Pham and Dirk Koch",

note = "Funding Information: ACKNOWLEDGMENT This work is kindly supported by the UK National Cy-ber Security Centre through the project rFAS (grant agreement 4212204/RFA 15971) and by the European Commission through the project EuroEXA (grants 754337). We also thank the Xilinx University Program for providing tools and boards. Publisher Copyright: {\textcopyright} 2020 IEEE. Copyright: Copyright 2020 Elsevier B.V., All rights reserved.",

year = "2020",

month = may,

day = "1",

doi = "10.1109/FCCM48280.2020.00018",

language = "English",

isbn = "9781728158037",

series = "Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020",

pages = "65--69",

booktitle = "Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020",

}

Mätas, K, La, T, Pham, K & Koch, D 2020, Powerhammering through Glitch Amplification – Attacks and Mitigation. in Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020., 9114608, Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020, pp. 65-69. https://doi.org/10.1109/FCCM48280.2020.00018

Powerhammering through Glitch Amplification – Attacks and Mitigation. / Mätas, Kaspar; La, Tuan; Pham, Khoa et al.
Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020. 2020. p. 65-69 9114608 (Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020).

Research output: Chapter in Book/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Powerhammering through Glitch Amplification – Attacks and Mitigation

AU - Mätas, Kaspar

AU - La, Tuan

AU - Pham, Khoa

AU - Koch, Dirk

N1 - Funding Information: ACKNOWLEDGMENT This work is kindly supported by the UK National Cy-ber Security Centre through the project rFAS (grant agreement 4212204/RFA 15971) and by the European Commission through the project EuroEXA (grants 754337). We also thank the Xilinx University Program for providing tools and boards. Publisher Copyright: © 2020 IEEE. Copyright: Copyright 2020 Elsevier B.V., All rights reserved.

PY - 2020/5/1

Y1 - 2020/5/1

N2 - Recent work on FPGA hardware security showed a substantial potential risk through power-hammering, which uses high switching activity in order to create excessive dynamic power loads. Virtually all present power-hammering attack scenarios are based on some kind of ring oscillators for which mitigation strategies exist. In this paper, we use a different strategy to create excessive dynamic power consumption: glitch amplification. By carefully designing XOR trees, fast switching wires can be implemented that, while driving high fan-out nets, can draw enough power to crash an FPGA. In addition to the attack (which is crashing an Ultra96 board), we will present a scanner for detecting malicious glitch amplifying FPGA designs.

AB - Recent work on FPGA hardware security showed a substantial potential risk through power-hammering, which uses high switching activity in order to create excessive dynamic power loads. Virtually all present power-hammering attack scenarios are based on some kind of ring oscillators for which mitigation strategies exist. In this paper, we use a different strategy to create excessive dynamic power consumption: glitch amplification. By carefully designing XOR trees, fast switching wires can be implemented that, while driving high fan-out nets, can draw enough power to crash an FPGA. In addition to the attack (which is crashing an Ultra96 board), we will present a scanner for detecting malicious glitch amplifying FPGA designs.

U2 - 10.1109/FCCM48280.2020.00018

DO - 10.1109/FCCM48280.2020.00018

M3 - Conference contribution

SN - 9781728158037

T3 - Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020

SP - 65

EP - 69

BT - Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020

ER -

Mätas K, La T, Pham K, Koch D. Powerhammering through Glitch Amplification – Attacks and Mitigation. In Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020. 2020. p. 65-69. 9114608. (Proceedings - 28th IEEE International Symposium on Field-Programmable Custom Computing Machines, FCCM 2020). doi: 10.1109/FCCM48280.2020.00018

Powerhammering through Glitch Amplification – Attacks and Mitigation

Abstract

Publication series

Access to Document

Fingerprint

Cite this