Skip to main content
SpringerLink
Log in

Security Against Hardware Trojan Attacks Using Key-Based Design Obfuscation

  • Published:
Journal of Electronic Testing Aims and scope Submit manuscript

Abstract

Malicious modification of hardware in untrusted fabrication facilities, referred to as hardware Trojan, has emerged as a major security concern. Comprehensive detection of these Trojans during post-manufacturing test has been shown to be extremely difficult. Hence, it is important to develop design techniques that provide effective countermeasures against hardware Trojans by either preventing Trojan attacks or facilitating detection during test. Obfuscation is a technique that is conventionally employed to prevent piracy of software and hardware intellectual property (IP). In this work, we propose a novel application of key-based circuit structure and functionality obfuscation to achieve protection against hardware Trojans triggered by rare internal circuit conditions. The proposed obfuscation scheme is based on judicious modification of the state transition function, which creates two distinct functional modes: normal and obfuscated. A circuit transitions from the obfuscated to the normal mode only upon application of a specific input sequence, which defines the key. We show that it provides security against Trojan attacks in two ways: (1) it makes some inserted Trojans benign, i.e. they become effective only in the obfuscated mode; and (2) it prevents an adversary from exploiting the true rare events in a circuit to insert hard-to-detect Trojans. The proposed design methodology can thus achieve simultaneous protection from hardware Trojans and hardware IP piracy. Besides protecting ICs against Trojan attacks in foundry, we show that it can also protect against malicious modifications by untrusted computer-aided design (CAD) tools in both SoC and FPGA design flows. Simulation results for a set of benchmark circuits show that the scheme is capable of achieving high levels of security against Trojan attacks at modest area, power and delay overhead.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7
Fig. 8
Fig. 9
Fig. 10
Fig. 11
Fig. 12
Fig. 13

Similar content being viewed by others

References

  1. Aarestad J, Acharyya D, Rad R, Plusquellic J (2010) Detecting Trojans through leakage current analysis using multiple supply pad. IEEE Trans Inf Forensics Secur 5(4):893–904

    Article  Google Scholar 

  2. Adee S (2008) The hunt for the kill switch. IEEE Spectrum 45(5):34–39

    Article  Google Scholar 

  3. Agrawal D, Baktir S, Karakoyunlu D, Rohatgi P, Sunar B (2007) Trojan detection using IC fingerprinting. In: IEEE symposium on security and privacy

  4. Alkabani Y, Koushanfar F (2007) Active hardware metering for intellectual property protection and security. In: USENIX security symposium

  5. Alkabani Y, Koushanfar F (2009) Consistency-based characterization for hardware Trojan detection. In: International conference on CAD

  6. Alkabani Y, Koushanfar F, Potkonjak M (2007) Remote activation of ICs for piracy prevention and digital right management. In: International conference on CAD

  7. Banga M, Hsiao MS (2008) A region based approach for the identification of hardware Trojans. In: International workshop on hardware-oriented security and trust

  8. Barak B, Goldreich O, Impagliazzo R, Rudich S, Sahai A, Vadhan SP, Yang K (2001) On the (im)possibility of obfuscating programs. In: Cryptology conference on advances in cryptology

  9. Brzozowski M, YarmolikVN (2007) Obfuscation as intellectual rights protection in VHDL language. In: CISIM

  10. Chakraborty RS, Bhunia S (2009) HARPOON: an obfuscation-based SoC design methodology for hardware protection. IEEE Trans CAD 28(10):1493–1502

    Google Scholar 

  11. Chakraborty RS, Bhunia S (2011) RTL hardware IP protection using key-based control and data flow obfuscation. In: International conference on VLSI design

  12. Chakraborty RS, Paul S, Bhunia S (2008) On-demand transparency for improving hardware Trojan detectability. In: International workshop on hardware-oriented security and trust

  13. Chakraborty RS, Wolff F, Paul S, Papachristou C, Bhunia S (2009) MERO: a statistical approach for hardware Trojan detection. Lect Notes Comput Sci 5747:396–410

    Article  Google Scholar 

  14. Chou T, Roy K (1996) Accurate power estimation of CMOS sequential circuits. IEEE Trans VLSI 4(3):369–380

    Article  Google Scholar 

  15. DARPA BAA06-40. TRUST for integrated circuits. [Online]. Available: http://www.darpa.mil/BAA/BAA06-40mod1/html

  16. Du D, Narasimhan S, Chakraborty RS, Bhunia S (2010) Self–referencing: a scalable side-channel approach for hardware Trojan detection. In: Workshop on cryptographic hardware and embedded systems

  17. Interra Systems, Concorde-Fast Synthesis. [Online]. Available: http://www.interrasystems.com/eda/eda_concorde.php

  18. Jin Y, Makris Y (2008) Hardware Trojan detection using path delay fingerprint. In: International workshop on hardware-oriented security and trust

  19. Jin Y, Kupp N, Makris Y (2009) Experiences in hardware Trojan design and implementation. In: International workshop on hardware-oriented security and trust

  20. Kim L-W, Villasenor JD, Koc CK (2009) A Trojan-resistant system-on-chip bus architecture. In: MILCOM

  21. Koushanfar F (2011) Provably secure active IC metering techniques for piracy avoidance and digital rights management. IEEE Trans Inf Forensics Secur (early access)

  22. Koushanfar F, Mirhoseini A, Alkabani Y (2010) A unified submodular framework for multimodal IC Trojan detection. In: International conference on information hiding

  23. Lin L, Burleson W, Parr C (2009) MOLES: malicious off-chip leakage enabled by side-channels. In: International conference on CAD

  24. Lynn B, Prabhakaran M, Sahai A (2004) Positive results and techniques for obfuscation. In: International conference on the theory and applications of cryptographic techniques

  25. Najm FN (1993) Transition density: a new measure of activity in digital circuits. IEEE Trans CAD 14(2):310–323

    Google Scholar 

  26. Narasimhan S, Du D, Chakraborty RS, Paul S, Wolff F, Papachristou C, Roy K, Bhunia S (2010) Multiple-parameter side-channel analysis: a non-invasive hardware Trojan detection approach. In: International symposium on hardware-oriented security and trust

  27. Oliveira AL (1999) Watermarking-based copyright protection of sequential functions. In: Design automation conference

  28. Potkonjak M, Nahapetian A, Nelson M, Massey T (2009) Hardware Trojan horse detection using gate-level characterization. In: Design automation conference

  29. Rad RM, Wang X, Tehranipoor M, Plusquellic J (2008) Power supply signal calibration techniques for improving detection resolution to hardware Trojans. In: International conference on CAD

  30. Ravi S, Raghunathan A, Chakradhar S (2004) Tamper resistance mechanisms for secure embedded systems. In: VLSI design

  31. Roy JA, Kaushanfar F, Markov IL (2008) Circuit CAD tools as a security threat. In: International workshop on hardware-oriented security and trust

  32. Roy JA, Koushanfar F, Markov IL (2008) EPIC: ending piracy of integrated circuits. In: Design, automation and test in Europe

  33. Tehranipoor M, Koushanfar F (2010) A survey of hardware Trojan taxonomy and detection. IEEE Des Test Comput 27(1):10–25

    Article  Google Scholar 

  34. Thicket™ family of source code obfuscators. [Online]. Available: http://www.semdesigns.com

  35. Torunoglu I, Charbon E (2000) Watermarking-based copyright protection of sequential functions. IEEE J Solid-State Circuits 35(3):434–440

    Article  Google Scholar 

  36. Wang C, Davidson J, Hill J, Knight J (2001) Protection of software-based survivability mechanisms. In: International conference on dependable systems and networks

  37. Wolff F, Papachristou C, Bhunia S, Chakraborty RS (2008) Towards Trojan-free trusted ICs: problem analysis and detection scheme. In: Design, automation and test in Europe

  38. Xakellis MG, Najm FN (1994) Statistical estimation of the switching activity in digital circuits. In: Design automation conference

  39. Yotsuyanagi H, Kinoshita K (1998) Undetectable fault removal of sequential circuits based on unreachable states. In: VLSI test symposium

  40. Yuan L, Qu G (2004) Information hiding in finite state machine. Lect Notes Comput Sci 3200:340–354

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science and Engineering, Indian Institute of Technology, Kharagpur, West Bengal, 721302, India

    Rajat Subhra Chakraborty

  2. Department of Electrical Engineering and Computer Science, Case Western Reserve University, Cleveland, OH, 44106, USA

    Swarup Bhunia

Authors
  1. Rajat Subhra Chakraborty
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Swarup Bhunia
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Rajat Subhra Chakraborty.

Additional information

Responsible Editor: S. T. Chakradhar

A preliminary version of this work has been published in the International Conference on Computer Aided Design (ICCAD), 2009.

Rights and permissions

Reprints and permissions

About this article

Cite this article

Chakraborty, R.S., Bhunia, S. Security Against Hardware Trojan Attacks Using Key-Based Design Obfuscation. J Electron Test 27, 767–785 (2011). https://doi.org/10.1007/s10836-011-5255-2

Download citation

  • Received:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s10836-011-5255-2

Keywords

Search

Navigation