Retour aux nouvelles

1 juin 2020 | International, C4ISR

DARPA Seeks Secure Microchip Supply Chain

"Once a chip is designed, adding security after the fact or making changes to address newly discovered threats is nearly impossible," explains a DARPA spokesperson.

By on May 29, 2020 at 2:46 PM

WASHINGTON: DARPA has launched a four-year project to find ways to design security features into microchips as they are being made to help ensure the future supply chain.

While the name of the project is daunting — Automatic Implementation of Secure Silicon (AISS) — and the technical requirements are a serious challenge, the concept is pretty simple.

“AISS aims to automate the process of incorporating security into chip designs, making it easier and potentially more cost effective for any organization with even a small design team (start-ups, mid-size companies, etc.) to build security measures into their designs,” a DARPA spokesperson told Breaking D today.

“Overall, with AISS DARPA aims to bring greater automation to the chip design process to profoundly decrease the burden of including security measures,” the spokesperson said.

The two winning teams, according to a May 27 DARPA press release, are:

The two AISS research teams are:

  • Synopsys, Arm, Boeing, Florida Institute for Cybersecurity Research at the University of Florida, Texas A&M University, UltraSoC, and the University of California, San Diego
  • Northrop Grumman, IBM, University of Arkansas, and University of Florida

“Research and development on the $75 million program was commenced two weeks ago and incremental capabilities are expected to roll out to the chip design community over the next four years,” the spokesperson said in an email. “Our hope is that many of the capabilities will start appearing as features in commercial design automation software before the program completion.”

Digital integrated circuits are the engines that drive modern computers, and everyday digital devices such as smart phones. They are critical to the evolution of the Internet of Things (IoT). As such, they increasingly have become a key target of hacking by US adversaries and cyber criminals alike, DARPA explains.

“Threats to IC chips are well known, and despite various measures designed to mitigate them, hardware developers have largely been slow to implement security solutions due to limited expertise, high cost and complexity,” the DARPA release says. “Further, when unsecure circuits are used in critical systems, the lack of embedded countermeasures exposes them to exploitation.”

Indeed, the Department of Commerce on May 15 took another swipe at Chinese telecoms behemoth Huawei and tightened its earlier efforts to block it from exporting its semiconductors and products to the US and allies. The Trump administration alleges that Huawei's hardware and software, in particular that related to 5G wireless technology, are full of deliberate security holes in order to enable Chinese government spying. The ruling by Commerce's Bureau of Industry and Security, which will take effect in September, seeks to prevent companies around the world from using American-made software and machinery develop chips for Huawei or its subsidiary firms.

The problem for device-makers, particularly in the IoT world where the market is largely for commercial products (think smart refrigerators), is that fixing potential security holes often isn't seen as worth the time, effort and most importantly, money.

“The inclusion of security also often requires certain trade-offs with the typical design objectives, such as size, performance, and power dissipation,” the DARPA spokesperson said. “For example, something like a sprinkler isn't likely to require the highest level of security protections. Investing in security mechanisms that take up a lot of space on the underlying chip, or significantly impact chip performance likely doesn't make sense based on the sprinkler's expected use and application.”

And yet, that future IoT sprinkler also will be other IoT devices and computer networks in operation by an individual, a company or a facility, such as a weapons depot.

Even more unfortunately, the spokesperson explained, “modern chip design methods are unforgiving – once a chip is designed, adding security after the fact or making changes to address newly discovered threats is nearly impossible.”

Thus, the AISS program is aimed at spurring research into two areas that can address four types of microchip vulnerability, the release says: “side channel attacks, hardware Trojans, reverse engineering, and supply chain attacks, such as counterfeiting, recycling, re-marking, cloning, and over-production.”

The first area of research will be focusing on “development of a ‘security engine' that combines the latest academic research and commercial technology into an upgradable platform that can be used to defend chips against attacks, and provide an infrastructure to manage these hardened chips as they progress through their lifecycle,” DARPA said.

The second area, led by software specialists Synopsys, “involves integrating the security engine technology developed in the first research area into system-on-chip (SOC) platforms in a highly automated way,” the DARPA release said. The Synopsys team also will be working on how to integrate new security designs and manufacturing tools with currently available off-the-shelf products.

Nicholas Paraskevopoulous, sector VP for emerging capabilities development at Northrop Grumman, said in a May 27 press release that the firm's “design tools will enable the development of secure and trusted integrated circuits with reduced costs.” Northrop Grumman is involved in the first AISS research area.

Synopsis could not be reached for comment by press time.

https://breakingdefense.com/2020/05/darpa-seeks-secure-microchip-supply-chain/

Sur le même sujet

  • IAI to Provide Loitering Munitions Systems to Asian Countries in Deals Worth Over $100 Million USD

    3 février 2021 | International, Naval

    IAI to Provide Loitering Munitions Systems to Asian Countries in Deals Worth Over $100 Million USD

    February 1, 2021 - announces the signing of three significant contracts valued at over $100 million USD, in which it will supply loitering munitions systems to several countries. The contracts include winning an international tender for the sale of the multi-purpose ROTEM system to a foreign country, sale of the naval version of the HAROP system to the navy of a country in Asia and sale of the ground version of the HAROP system to another customer in Asia. Boaz Levy, IAI's President and CEO, said: “IAI is a global pioneer in developing the operational concept of a loitering munitions systems, which has ripened to a family of unique and accurate attack systems. These systems, which have added impressive achievements to the operational capability of fighting forces around the globe, constitute central and decisive attack components for advanced battlefields of the future. These contracts are further proof of the importance and confidence modern armies place in accurate munitions systems as part of their arsenal, and may be harbingers of additional business activity in this field. IAI will continue to develop and improve a range of strike systems in order to give its clients around the world a precise operational solution.” The Maritime HAROP system provides an operational solution for a range of vessels, from off-shore vessels to fighting frigates in the naval theater. In a complex naval theater, the HAROP system gives mission commanders in a fleet of ships the capability to independently and organically collect intelligence, assess targets and strike. The intelligence gathered by the HAROP is directly integrated in the vessel's control room and allows for quick, accurate and lethal decision-making. Use of the HAROP on naval platforms is an operational alternative and complementary element to using sea-sea missiles, with a wide range of uses and with optimal cost-efficiency for the navy. The maritime and land combat-proven HAROP provides an operational solution for a range of low and high-intensity conflict scenarios and for anti-terrorism activity. The HAROP is equipped with day/night cameras and has the ability to search, find and attack with maximum precision both static and moving targets, on land or at sea and at a long-range. A strike can take place from any direction and at any angle of attack. ROTEM is the first Vertical Take-Off & Landing (VTOL) Tactical Loitering Munition combat-proven and used in operations by several of the world's militaries as a small loitering device based on a drone platform and is a power multiplier for tactical forces in a range of fighting scenarios, including security operations and maneuvers. The system provides a reconnaissance, observation and attack envelope with maximum autonomous performance, integrating a simple and intuitive operation interface that can be used by a single fighter from a touchscreen tablet. The ROTEM VTOL Tactical Loitering Munition carries day/night cameras and a warhead weighing up to one kilogram and is optimally designed to carry out combined missions of intelligence gathering and attack. The system incorporates a unique safety mechanism that enables its safe return to the fighter on the ground if an attack was not carried out. The ROTEM system has proven its operational effectiveness for precise, surgical strikes against a range of different targets. The loitering munitions family developed by IAI includes the Harpy-NG – a third generation of the system homing against radiating targets, the HAROP, a second-generation of a precision electro-optical attack system, the Mini-Harpy, dual (Electro-optical day&night + Anti-Radiation seeker) tactical advanced munitions system and the tactical loitering Green-Dragon system, as well as the ROTEM VTOL Tactical Loitering Munition. IAI is a focal point of national and global technological know-how in the field of attack systems, air defense, radars, satellites, remotely operated aircraft, civilian aviation and cyber. View source version on IAI: https://www.iai.co.il/iai-to-provide-loitering-munitions-to-asian-countries-deals-worth-over-100-million-usd

  • The Netherlands orders 12 Airbus H225M helicopters

    10 novembre 2024 | International, Aérospatial

    The Netherlands orders 12 Airbus H225M helicopters

    The agreement was signed by Vice-Admiral Jan Willem Hartman, Head of the Netherlands Command Materiel and IT agency, and Bruno Even, CEO of Airbus Helicopters during the Euronaval trade show...

  • The Week In Defense, Feb. 11-18, 2021

    11 février 2021 | International, Aérospatial, Naval, Terrestre, C4ISR, Sécurité

    The Week In Defense, Feb. 11-18, 2021

    New York Senator Investigates Fatal UH-60 Crashes Sen. Kirsten Gillibrand (D-N.Y.), a member of the Senate Armed Services Committee, is asking the Pentagon to launch a formal investigation into four fatal Sikorsky UH-60 crashes to determine whether there is a systemic problem with the helicopter... https://aviationweek.com/defense-space/budget-policy-operations/week-defense-feb-11-18-2021

Toutes les nouvelles