Method and System for Detecting Hardware Trojans and Unintentional Design Flaws

US 20180032760A1
Filed: 07/27/2017
Published: 02/01/2018
Est. Priority Date: 07/27/2016
Status: Active Grant

First Claim

Patent Images

1. A method performed by data processing apparatus, the method comprising:

receiving a hardware design specifying an implementation for information flow in a hardware configuration, wherein the hardware design comprises at least two variables relating to the information flow;

receiving one or more labels annotating the hardware design, wherein each of the one or more labels corresponds to a respective variable of the at least two variables;

receiving one or more security properties specifying a restriction relating to the one or more labels for implementing an information flow model;

generating the information flow model, wherein generating comprises translating the one or more security properties to automatically assign a respective label value to each of the one or more labels based on the one or more security properties;

performing verification using the information flow model, wherein verification comprises verifying whether the information flow model passes or fails against the one of more security properties; and

upon verifying that the information flow model passes, determining that an unintentional design flaw is not identified in the hardware design.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present disclosure includes systems and methods relating to information flow tracking and detection of unintentional design flaws of digital devices and microprocessor systems. In general, in one implementation, a technique includes: receiving a hardware design specifying an implementation for information flow in a hardware configuration; receiving one or more labels annotating the hardware design; receiving one or more security properties specifying a restriction relating to the one or more labels for implementing an information flow model; generating the information flow model; performing verification using the information flow model, wherein verification comprises verifying whether the information flow model passes or fails against the one of more security properties; and upon verifying that the information flow model passes, determining that an unintentional design flaw is not identified in the hardware design.

32 Citations

View as Search Results

13 Claims

1. A method performed by data processing apparatus, the method comprising:
- receiving a hardware design specifying an implementation for information flow in a hardware configuration, wherein the hardware design comprises at least two variables relating to the information flow;
  
  receiving one or more labels annotating the hardware design, wherein each of the one or more labels corresponds to a respective variable of the at least two variables;
  
  receiving one or more security properties specifying a restriction relating to the one or more labels for implementing an information flow model;
  
  generating the information flow model, wherein generating comprises translating the one or more security properties to automatically assign a respective label value to each of the one or more labels based on the one or more security properties;
  
  performing verification using the information flow model, wherein verification comprises verifying whether the information flow model passes or fails against the one of more security properties; and
  
  upon verifying that the information flow model passes, determining that an unintentional design flaw is not identified in the hardware design.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method of claim 1, comprising:
    - upon verifying that the information flow model fails, determining that an unintentional design flaw is identified in the hardware design.
  - 3. The method of claim 2, wherein the unintentional design flaw is a hardware Trojan.
  - 4. The method of claim 3, wherein the hardware Trojan is characterized as one of:
    - insertion phase, abstraction level, activation mechanism, effects, or location.
  - 5. The method of claim 2, comprising:
    - generating a counterexample that identifies the security property violated during performing verification.
  - 6. The method of claim 5, wherein the generated counterexample enables functional testing and the unintentional design flaw is a hardware Tojan, the functional testing determining an exact behavior of the hardware Trojan.
  - 7. The method of claim 1, wherein generating the information flow comprises generating, based on the security property, an ordering structure specifying a hierarchical order comprising at least two security levels.
  - 8. The method of claim 7, wherein the automatically assigning is based on the generated ordering structure.
  - 9. The method of claim 8, wherein the hierarchical order of the at least two security levels comprises a higher security level corresponding to a more restricted label specified in the security property and a lower security level corresponding to a less restricted label specified in the security property.
  - 10. The method of claim 8, wherein the ordering structure is generated as a security lattice.
  - 11. The method of claim 1, wherein the one or more security properties are received in a high-level security language.
  - 12. The method of claim 1, wherein translating the one or more security properties comprises translating from the high-level security language to a hardware description language.
  - 13. The method of claim 1, wherein performing verification comprises use of an electronic design automation tool.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cycuity, Inc, Regents of the University of California (University of California)
Original Assignee
Tortuga Logic Inc.
Inventors
Hu, Wei, Kastner, Ryan, Oberg, Jason K.

Granted Patent

US 10,719,631 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/556   involving covert channels, ...

G06F 21/57   Certifying or maintaining t...

G06F 21/577   Assessing vulnerabilities a...

G06F 21/6218   to a system of files or obj...

G06F 21/71   to assure secure computing ...

G06F 21/78   to assure secure storage of...

G06F 2221/034   Test or assess a computer o...

H04L 63/14   for detecting or protecting...

H04L 63/1433   Vulnerability analysis

Method and System for Detecting Hardware Trojans and Unintentional Design Flaws

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

32 Citations

13 Claims

Specification

Use Cases

Quick Links

Others

Method and System for Detecting Hardware Trojans and Unintentional Design Flaws

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

13 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others