| | This Article | |
| |
| |
| | Share | |
| |
| |
| | Bibliographic References | |
| |
| |
| | Add to: | |
| |
 Digg
 Furl
 Spurl
 Blink
 Simpy
 Google
 Del.icio.us
 Y!MyWeb
| |
| | Search | |
| |
| |
| | |
Multilevel Design Validation in a Secure Embedded System
November 2006 (vol. 55 no. 11)
pp. 1380-1390
In this paper, we present the simulation-based validation approach that we used during the design of ThumbPod-2, a portable fingerprint authentication system. The particular nature of secure system design has considerable impact on the simulation requirements and design flow. We present two key contributions. We will first show that rigorous design of secure digital systems requires a multilevel validation approach, meaning validation at multiple steps in the design flow. Indeed, an attacker chooses the easiest entry point and does not stick with one abstraction level. Second, we show the use of a cosimulation and codesign environment called GEZEL that can support this type of multilevel validation. We will illustrate this multilevel design validation strategy with the verification of security of the ThumbPod-2 device.
[1] 1380 S. Ravi, “Security in Embedded Systems: Design Challenges,” ACM Trans. Embedded Computing Systems, special issue on security, vol. 3, no. 3, pp. 461-491, Aug. 2004.[2] T. Arnold and L.P. Van Doorn, “The IBM PCIXCC: A New Cryptographic Coprocessor for the IBM eServer,” IBM J. Research and Development, vol. 48, nos. 3/4, pp. 491-503, 2004.[3] A. Huang, “Keeping Secrets in Hardware: The Microsoft XBox Case Study,” AI Memo 2002-008, Massachusetts Inst. of Tech nology 2002.[4] S. Edwards, L. Lavagno, E. Lee, and A. Sangiovanni-Vincentelli, “Design of Embedded Systems: Formal Models, Validation, and Synthesis,” Proc. IEEE, vol. 85, no. 3, pp. 366-390, Mar. 1997.[5] P. Mishra, N. Dutt, N. Krishnamurthy, and M. Abadir, “A Top-Down Methodology for Microprocessor Validation,” IEEE Design and Test of Computers, vol. 21, no. 2, pp. 122-131, Mar.-Apr. 2004.[6] S.W. Smith, R. Perez, S.H. Weingart, and V. Austel, “Validating a High-Performance, Programmable Secure Coprocessor,” Proc. 22nd Nat'l Information Systems Security Conf., Oct. 1999.[7] S. Pearson, “Trusted Computing Platforms, the Next Security Solution,” HP Technical Report HPL-2002-221, Nov. 2002.[8] P. Schaumont, K. Sakiyama, Y. Fan, D. Hwang, B. Lai, A. Hodjat, S. Yang, and I. Verbauwhede, “Testing ThumbPod: Softcore Bugs Are Hard to Find,” Proc. IEEE Int'l High Level Design Validation and Test Workshop (HLDVT '03), pp. 77-82, Nov. 2003.[9] Trusted Computing Group, http:/www.trustedcomputinggroup .org, 2006.[10] K. Tiri, D. Hwang, A. Hodjat, B. Lai, S. Yang, P. Schaumont, and I. Verbauwhede, “A Side-Channel Leakage-Free Co-Processor IC in 0.18 um CMOS for Embedded AES-Based Cryptographic and Biometric Processing,” Proc. Design Automation Conf., pp. 222-227, June 2005.[11] K. Tiri and I. Verbauwhede, “Simulation Models for Side-Channel Information Leaks,” Proc. 2005 Design Automation Conf., pp. 228-233, June 2005.[12] The GEZEL Design Environment, http://rijndael.ece.vt.edugezel2, 2006.[13] K. Sakiyama, L. Batina, P. Schaumont, and I. Verbauwhede, “HW/SW Co-Design of TA/SPA-Resistant Public-Key CryptoSystems,” Proc. Workshop Cryptographic Advances in Secure Hardware, Sept. 2005.[14] S. Yang and I. Verbauwhede, “A Secure Fingerprint Matching Technique,” Proc. ACM Workshop Biometrics: Methods and Applications, pp. 89-94, Nov. 2003.
Index Terms:
Multilevel simulation, security, embedded systems.
Citation:
Patrick Schaumont, David Hwang, Shenglin Yang, Ingrid Verbauwhede, "Multilevel Design Validation in a Secure Embedded System," IEEE Transactions on Computers, vol. 55, no. 11, pp. 1380-1390, Nov. 2006, doi:10.1109/TC.2006.184
