Litcius/Paper detail

A Hardware Root-of-Trust Design for Low-Power SoC Edge Devices

Alan Ehret, Eliakin del Rosario, Karen Gettings, Michel A. Kinsy

202012 citationsDOI

Abstract

In this work, we introduce a hardware root-of-trust architecture for low-power edge devices. An accelerator-based SoC design that includes the hardware root-of-trust architecture is developed. An example application for the device is presented. We examine attacks based on physical access given the significant threat they pose to unattended edge systems. The hardware root-of-trust provides security features to ensure the integrity of the SoC execution environment when deployed in uncontrolled, unattended locations. E-fused boot memory ensures the boot code and other security critical software is not compromised after deployment. Digitally signed programmable instruction memory prevents execution of code from untrusted sources. A programmable finite state machine is used to enforce access policies to device resources even if the application software on the device is compromised. Access policies isolate the execution states of application and security-critical software. The hardware root-of-trust architecture saves energy with a lower hardware overhead than a separate secure enclave while eliminating software attack surfaces for access control policies.

Topics & Concepts

Computer scienceEmbedded systemSoftwareOverhead (engineering)Hardware security moduleSoftware deploymentEnhanced Data Rates for GSM EvolutionHardware architectureState (computer science)Operating systemComputer hardwareRoot (linguistics)Software security assuranceAccess controlEdge deviceArchitectureTrusted ComputingComputer securityCryptographyCloud computingCloud computing securityVisual artsLinguisticsPhilosophyAlgorithmTelecommunicationsArtSecurity and Verification in ComputingPhysical Unclonable Functions (PUFs) and Hardware SecurityCloud Data Security Solutions
A Hardware Root-of-Trust Design for Low-Power SoC Edge Devices | Litcius