Instruction Flow-based Detectors against Fault Injection Attacks
Troya Çağıl Köylü (TU Delft - Electrical Engineering, Mathematics and Computer Science)
Cezar Reinbrecht (TU Delft - Electrical Engineering, Mathematics and Computer Science)
Marcelo Brandalero (Brandenburg University of Technology Cottbus)
Said Hamdioui (TU Delft - Electrical Engineering, Mathematics and Computer Science)
Mottaqiallah Taouil (TU Delft - Electrical Engineering, Mathematics and Computer Science)
More Info
expand_more
Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.
Abstract
Fault injection attacks are a threat to all digital systems, especially to the ones conducting security sensitive operations. Recently, the strategy of observing the instruction flow to detect attacks has gained popularity. In this paper, we provide a comparative study between three hardware-based techniques (i.e., recurrent neural network (RNN), content addressable memory (CAM), and Bloom filter (BF)) that detect fault attacks against software RSA decryption. After conducting experiments with various fault models, we observed that the CAM provides the best detection rate, the RNN provides the most software/application flexibility, and the BF is a middle ground between the two. Regardless, all of them exhibit robustness against faults targeted at them, and obtain a very high detection rate when faults change instructions altogether. This affirms the validity of monitoring the integrity of the instruction flow as a strong countermeasure against any type of fault attack.
help_outline