Protecting the Control Flow of Embedded Processors against Fault Attacks

Mario Werner, Erich Wenger, Stefan Mangard

Research output: Chapter in Book/Report/Conference proceedingConference paperpeer-review

Abstract

During the last two decades, most of the research on fault attacks focused on attacking and securing intermediate values that occur during the computation of cryptographic primitives. However, also fault attacks on the control flow of software can compromise the security of a system completely. Fault attacks on the control flow can for example make a system branch to an administrative function directly or make it bypass comparisons of redundant computations. Security checks based on comparing redundant computations are for example commonly used to secure PIN checks and implementations of block ciphers against fault attacks.

Although control-flow integrity is of crucial importance to secure a system against fault attacks, so far there exist only very few proposals for countermeasures. This article addresses this gap and presents an efficient hardware-supported technique that allows to maintain control-flow integrity in the setting of fault attacks. The technique is based on so-called generalized path signatures, which have initially been introduced in the context of soft errors. We present a prototype implementation for a Cortex-M3 microprocessor and corresponding compiler extensions in LLVM. Our implementation, which increases the processor size by merely 6.4 %, detects every fault on the instruction-stream with 99.9 % probability within 3 cycles. The runtime overhead of the protected applications ranges from 2 % to 71 %.

Original languageEnglish
Title of host publicationSmart Card Research and Advanced Applications
Subtitle of host publication14th International Conference, CARDIS 2015, Bochum, Germany, November 4-6, 2015. Revised Selected Papers
EditorsNaofumi Homma, Marcel Medwed
PublisherSpringer
Volume9514
ISBN (Electronic)978-3-319-31271-2
ISBN (Print)978-3-319-31270-5
DOIs
Publication statusPublished - Mar 2016
EventInternational Conference on Smart Card Research and Advanced Applications - Bochum, Germany
Duration: 4 Nov 20156 Nov 2015

Conference

ConferenceInternational Conference on Smart Card Research and Advanced Applications
Country/TerritoryGermany
CityBochum
Period4/11/156/11/15

Fields of Expertise

  • Information, Communication & Computing

Fingerprint

Dive into the research topics of 'Protecting the Control Flow of Embedded Processors against Fault Attacks'. Together they form a unique fingerprint.

Cite this