Retour aux nouvelles

29 mars 2019 | International, C4ISR, Sécurité, Autre défense

DARPA Seeks to Make Scalable On-Chip Security Pervasive

For the past decade, cybersecurity threats have moved from high in the software stack to progressively lower levels of the computational hierarchy, working their way towards the underlying hardware. The rise of the Internet of Things (IoT) has driven the creation of a rapidly growing number of accessible devices and a multitude of complex chip designs needed to enable them. With this rapid growth comes increased opportunity for economic and nation-state adversaries alike to shift their attention to chips that enable complex capabilities across commercial and defense applications. The consequences of a hardware cyberattack are significant as a compromise could potentially impact not millions, but billions of devices.

Despite growing recognition of the issue, there are no common tools, methods, or solutions for chip-level security currently in wide use. This is largely driven by the economic hurdles and technical trade-offs often associated with secure chip design. Incorporating security into chips is a manual, expensive, and cumbersome task that requires significant time and a level of expertise that is not readily available in most chip and system companies. The inclusion of security also often requires certain trade-offs with the typical design objectives, such as size, performance, and power dissipation. Further, modern chip design methods are unforgiving – once a chip is designed, adding security after the fact or making changes to address newly discovered threats is nearly impossible.

“Today, it can take six to nine months to design a modern chip, and twice as long if you want to make that same design secure,” said Serge Leef, a program manager in DARPA's Microsystems Technology Office (MTO). “While large merchant semiconductor companies are investing in in-house personnel to manually incorporate security into their high-volume silicon, mid-size chip companies, system houses, and start-ups with small design teams who create lower volume chips lack the resources and economic drivers to support the necessary investment in scalable security mechanisms, leaving a majority of today's chips largely unprotected.”

To ease the burden of developing secure chips, DARPA developed the Automatic Implementation of Secure Silicon (AISS) program. AISS aims to automate the process of incorporating scalable defense mechanisms into chip designs, while allowing designers to explore economics versus security trade-offs and maximize design productivity. The objective of the program is to develop a design tool and IP ecosystem – which includes tool vendors, chip developers, IP licensers, and the open source community – that will allow security to be inexpensively incorporated into chip designs with minimal effort and expertise, ultimately making scalable on-chip security pervasive.

Leef continued, “The security, design, and economic objectives of a chip can vary based on its intended application. As an example, a chip design with extreme security requirements may have to accept certain tradeoffs. Achieving the required security level may cause the chip to become larger, consume more power, or deliver slower performance. Depending on the application, some or all of these tradeoffs may be acceptable, but with today's manual processes it's hard to determine where tradeoffs can be made.”

AISS seeks to create a novel, automated chip design flow that will allow the security mechanisms to scale consistently with the goals of the design. The design flow will provide a means of rapidly evaluating architectural alternatives that best address the required design and security metrics, as well as varying cost models to optimize the economics versus security tradeoff. The target AISS system – or system on chip (SoC) – will be automatically generated, integrated, and optimized to meet the objectives of the application and security intent. These systems will consist of two partitions – an application specific processor partition and a security partition implementing the on-chip security features. This approach is novel in that most systems today do not include a security partition due to its design complexity and cost of integration. By bringing greater automation to the chip design process, the burden of security inclusion can be profoundly decreased.

While the threat landscape is ever evolving and expansive, AISS seeks to address four specific attack surfaces that are most relevant to digital ASICs and SoCs. These include side channel attacks, reverse engineering attacks, supply chain attacks, and malicious hardware attacks. “Strategies for resisting threats vary widely in cost, complexity, and invasiveness. As such, AISS will help designers assess which defense mechanisms are most appropriate based on the potential attack surface and the likelihood of a compromise,” said Leef.

In addition to incorporating scalable defense mechanisms, AISS seeks to ensure that the IP blocks that make up the chip remain secure throughout the design process and are not compromised as they move through the ecosystem. As such, the program will also aim to move forward provenance and integrity validation techniques for preexisting design components by advancing current methods or inventing novel technical approaches. These techniques may include IP watermarking and threat detection to help validate the chip's integrity and IP provenance throughout its lifetime.

AISS is part of the second phase of DARPA's Electronics Resurgence Initiative (ERI) – a five-year, upwards of $1.5 billion investment in the future of domestic, U.S. government, and defense electronics systems. Under ERI Phase II, DARPA is exploring the development of trusted electronics components, including the advancement of electronics that can enforce security and privacy protections. AISS will help address this mission through its efforts to enable scalable on-chip security.

DARPA will hold a Proposers Day on April 10, 2019 at the DARPA Conference Center, located at 675 North Randolph Street, Arlington, Virginia 22203, to provide more information about AISS and answer questions from potential proposers. For details about the event, including registration requirements, please visit: https://www.fbo.gov/index?s=opportunity&mode=form&id=6770487d820ee13f33af67b0980a7d73&tab=core&_cview=0

Additional information will be available in the forthcoming Broad Agency Announcement, which will be posted to www.fbo.gov.

https://www.darpa.mil/news-events/2019-03-25

Sur le même sujet

  • Can Tempest and FCAS projects both succeed in Europe?

    29 juin 2020 | International, Aérospatial

    Can Tempest and FCAS projects both succeed in Europe?

    By Flight International 26 June 2020 For some, a time of global economic crisis might not feel like the perfect moment for nations to invest huge sums of money to develop a new class of combat aircraft only due to enter use around 2035-2040. Currently, six European governments and their national defence industry champions are involved in the early phases of two competing – and comparable – projects to deliver such a capability. In the opinion of Airbus Defence & Space chief executive Dirk Hoke, Europe's current trio of advanced fighters – the Dassault Rafale, Eurofighter Typhoon and Saab Gripen – represent a wasteful replication of industrial effort – and all lose out by battling for the same orders. Hoke is championing a future combat air system (FCAS) project now combining the resources and know-how of French and German industry, and also later incorporating Spain. With its Tempest development having drawn interest from Italy and Sweden, the UK is not only turning away from its co-operation with Germany and Spain on Eurofighter, but applying the afterburners on their separation. Key players behind both efforts are united in their calls to “avoid the mistakes of the past”. For some, that refers to compromised yet complex requirements, sprawling manufacturing and final assembly arrangements, and political interference during export activities, while for others, a simple lack of harmony was at fault. Getting everyone to agree that having multiple final assembly lines for a fighter with a comparatively small production volume is an inefficient luxury is one thing – agreeing which will lose the strategic capability is quite another. International partnering spreads a programme's investment burden, but elements of the Eurofighter set-up and the Airbus Defence & Space A400M airlifter serve as cautionary tales. Three can be a crowd, but a lack of agreement among four or seven involved nations can cause lengthy delay and spiralling costs. Surely Europe can comfortably support two next-generation combat aircraft programmes? Indeed, those involved in FCAS and Tempest eye them as offering a real opportunity to power part of their nations' economic recovery in the post-coronavirus era. For an alternative view should the projects eventually have to merge, a unified solution could serve all 27 EU member states, plus the UK. Such a prospect could make the US-led Lockheed Martin F-35 programme look like a bureaucratic cakewalk by comparison. https://www.flightglobal.com/defence/can-tempest-and-fcas-projects-both-succeed-in-europe/139007.article

  • US Navy looks at manned-unmanned teaming role for E-2D Advanced Hawkeye

    22 mars 2021 | International, Aérospatial, Naval

    US Navy looks at manned-unmanned teaming role for E-2D Advanced Hawkeye

    The US Navy is planning to award Northrop Grumman a sole-source contract to modify the E-2D Advanced Hawkeye’s mission computer and display software so that the early warning aircraft could control unmanned air vehicles.

  • La Luftwaffe ne posséderait que 4 chasseurs Eurofighter aptes au combat

    14 mai 2018 | International, Aérospatial

    La Luftwaffe ne posséderait que 4 chasseurs Eurofighter aptes au combat

    Suite à l'absence de munitions et à des problèmes techniques rendant les appareils «aveugles», seuls 4 des 128 chasseurs Eurofighter dotant l'armée de l'air allemande sont aptes au combat. L'écrasante majorité des 128 chasseurs Eurofighter équipant la Luftwaffe ne sont pas aptes au combat, relate l'hebdomadaire Der Spiegel, se référant à ses propres sources. D'après l'édition, la cause réside dans le problème que présentent des containers avec des capteurs spéciaux installés sur les ailes des appareils et appelés à déterminer l'approche des avions ennemis. Or, le système de refroidissement de ces dispositifs, précise Der Spiegel, présente de graves dysfonctionnements, ce qui rend les avions de combat «aveugles» et réduit l'efficacité de leur utilisation. Un autre problème cité par les interlocuteurs de l'hebdomadaire d'investigation résiderait dans le manque de munitions. Ainsi, selon les données fournies par l'édition, seuls quatre chasseurs Eurofighter sont actuellement aptes au combat suite au manque de missiles. Tentation dangereuse: le F-35 pour l'Allemagne, une menace potentielle pour l'Europe L'Eurofighter Typhoon est un chasseur polyvalent de la quatrième génération fabriqué par Eurofighter GmbH et exploité par l'Allemagne, l'Autriche, l'Arabie saoudite, l'Espagne, l'Italie et le Royaume-Uni. L'appareil en question est entré en service en 2003. Plus tôt, les médias allemands ont rapporté que les avions Tornado ne se conformaient pas aux normes de l'Otan. Il a été indiqué que les 93 appareils avaient besoin d'une lourde modernisation. En même temps, la ministre allemande de la Défense, Ursula von der Leyen, a déclaré que ces appareils seraient exploités jusqu'en 2035. https://fr.sputniknews.com/international/201805021036182820-luftwaffe-allemagne-chasseurs/

Toutes les nouvelles