Early SoC Security Validation by VP-based Static Information Flow Analysis

Muhammad Hassan, Vladimir Herdt, Hoang M. Le, Daniel Große, Rolf Drechsler

In: Proceedings of the 36th International Conference on Computer Aided Design (ICCAD). IEEE/ACM International Conference on Computer-Aided Design (ICCAD-36) 36th November 13-16 Irvine CA United States 2017.


Security is one of the most burning issues in embed-ded system design nowadays. The majority of strategies to secureembedded systems are being implemented in software. However,a potential hardware backdoor that allows unprivileged softwareaccess to confidential data will render even the perfectly securesoftware useless. As the underlying SoC cannot be patched afterdeployment, it is very critical to detect and correct SoC hardwaresecurity issues in the design phase. To prevent costly fixes in laterstages, security validation should start as early as possible. In thispaper, we propose a novel approach to SoC security validationat the system level usingVirtual Prototypes(VP). At the heart ofthe approach is a scalable static information flow analysis thatcan detect potential security breaches such as data leakage anduntrusted access; confidentiality and integrity issues, respectively.We demonstrate the applicability of the approach on real-worldVPs.


Deutsches Forschungszentrum für Künstliche Intelligenz
German Research Center for Artificial Intelligence