Litcius/Paper detail

Don't CWEAT It

Baleegh Ahmad, Wei-Kai Liu, Luca Collini, Hammond Pearce, Jason M. Fung, Jonathan Valamehr, Mohammad Mahdi Bidmeshki, Piotr Sapiecha, Steve Brown, Krishnendu Chakrabarty, Ramesh Karri, Benjamin Tan

2022Proceedings of the 41st IEEE/ACM International Conference on Computer-Aided Design20 citationsDOIOpen Access PDF

Abstract

To help prevent hardware security vulnerabilities from propagating to later design stages where fixes are costly, it is crucial to identify security concerns as early as possible, such as in RTL designs. In this work, we investigate the practical implications and feasibility of producing a set of security-specific scanners that operate on Verilog source files. The scanners indicate parts of code that might contain one of a set of MITRE's common weakness enumerations (CWEs). We explore the CWE database to characterize the scope and attributes of the CWEs and identify those that are amenable to static analysis. We prototype scanners and evaluate them on 11 open source designs - 4 system-on-chips (SoC) and 7 processor cores - and explore the nature of identified weaknesses. Our analysis reported 53 potential weaknesses in the OpenPiton SoC used in [email protected], 11 of which we confirmed as security concerns.

Topics & Concepts

Computer scienceScope (computer science)Strengths and weaknessesSet (abstract data type)Open sourceSoftware security assuranceCode (set theory)Source codeVerilogStatic analysisSoftware engineeringComputer securityEmbedded systemProgramming languageSoftwareInformation securityField-programmable gate arraySecurity serviceEpistemologyPhilosophySecurity and Verification in ComputingPhysical Unclonable Functions (PUFs) and Hardware SecurityAdvanced Malware Detection Techniques
Don't CWEAT It | Litcius