Field-Programmable Custom Computing Machines, Annual IEEE Symposium on (2012)
Toronto, Ontario Canada
Apr. 29, 2012 to May 1, 2012
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/FCCM.2012.42
Security in MPSoC is gaining an increasing attention since several years. Digital convergence is one of the numerous reasons explaining such a focus on embedded systems as much sensitive and secret data are now stored, manipulated and exchanged in these systems. Most solutions are currently built at the software level, we believe hardware enhancements also play a major role in system protection. One strategic point is the communication layer as all data goes through it. Monitoring and controlling communications enable to fend off attacks before system corruption. In this work, we propose an efficient solution with several hardware enhancements to secure data exchanges in a bus-based MPSoC. Our approach relies on low complexity distributed firewalls connected to all critical IPs of the system. Designers can deploy different security policies (access right, data format, authentication, confidentiality) in order to protect the system in a flexible way. To illustrate the benefit of such a solution, implementations are discussed for different MPSoCs implemented on Xilinx Virtex-6 FPGAs. Results demonstrate a reduction up to 33% in terms of latency overhead compared to existing efforts.
communication, security, MPSoC, bus, cryptography, external memory, firewall, latency
Pascal Cotret, Jérémie Crenne, Guy Gogniat, Jean-Philippe Diguet, "Bus-based MPSoC Security through Communication Protection: A Latency-efficient Alternative", Field-Programmable Custom Computing Machines, Annual IEEE Symposium on, vol. 00, no. , pp. 200-207, 2012, doi:10.1109/FCCM.2012.42