(ReCo) Fuse Your PRC or Lose Security: Finally Reliable Reconfiguration-based Countermeasures on FPGAs

Kenneth Schmitz, Buse Ustaoglu, Daniel Große, Rolf Drechsler

In: Proceedings of the 15th International Symposium on Applied Reconfigurable Computing (ARC). International Symposium on Applied Reconfigurable Computing (ARC-2019) April 9-11 Darmstadt Germany 2019.


In this work, we leveraged an originally proposed safety mechanism which createsa container around an IP, to encapsulate and protect the PRC of an FPGA. Weintroduced ReCoFuses inside our encapsulation-scheme, each capturing a specificproperty of interest which has to be fulfilled at any time during PRC operation.Formal verification was employed to guarantee the correctness in detecting asecurity violation. For evaluation of our scheme, we have created a referencedesign, which we attacked by injecting faults. The experiments showed that theimplemented measures – leveraging the proposed scheme – realize an effective andcost efficient protection for reconfiguration-based secured designs. Our flexiblearchitecture allows adding more ReCoFuses (e.g. CRC, additional encryption,hash-based finger printing etc.) easily. The protective measures are dependenton the required degree of protection. Possibly, a full catalog of fuses can bemaintained in the future. In summary, this work closes the gap of vulnerablereconfiguration infrastructure as identified in [10] by Mentens et al.


German Research Center for Artificial Intelligence
Deutsches Forschungszentrum für Künstliche Intelligenz