Research on Hardware Trojan Detection for FPGA Application

doi:10.3778/j.issn.1002-8331.2006-0355

Abstract

Abstract:

In recent years, the application of FPGA is more and more widespread. Hardware Trojans threaten the information security. In order to detect hardware Trojan and ensure the credibility of the FPGA, it proposes injection methods for hardware Trojans and ring oscillators by using smart compilation in Altera FPGA. Besides, a normalized algorithm for detecting and locating hardware Trojans is also raised. Based on this method, a hardware Trojan detection circuit based on ring oscillator is designed. According to the scale of the system, six ring oscillators are deployed and each of the ring oscillators consists of 121 NAND gates. Four typical hardware Trojans are implanted in the circuit successively, and a normalized algorithm is used to analyze the oscillation period of ring oscillator. Finally, all types of Trojan horses are located and detected. The detection results show that the detection method based on the ring oscillator can detect not only the hardware Trojan with large dynamic power consumption, but also the Trojan with small static power consumption. The proposed method can be applied to the actual FPGA project, and provides an effective way to find Trojan horse in time.

Key words: hardware Trojan, FPGA, ring oscillator, smart compilation, normalization algorithm

摘要：

近年来，FPGA的应用愈加广泛。为确保FPGA中数据安全可信，在基于环形振荡器的硬件木马检测方法之上，提出一种在Altera FPGA中使用增量编译技术实现环形振荡器和木马植入的方法以及使用归一化差值算法发现并定位木马的数据分析方法。设计基于环形振荡器的硬件木马检测电路，根据系统规模共部署6级振荡环，每级环形振荡器由121个与非门构成。根据木马电路类型和功耗来源，在电路中依次植入四种典型硬件木马，使用归一化差值算法分析环形振荡器振荡频率，最终实现所有类型的木马定位与检测。检测结果表明，基于环形振荡器的硬件木马检测方法在FPGA中具有很好的木马检出效果，不仅能够检测具有较大动态功耗的木马，也可以完成对具有很小的静态功耗木马的检测。所提出的方法已经在实际FPGA工程中使用，为及时发现木马提供了一种有效途径。

关键词: 硬件木马, FPGA, 环形振荡器, 增量编译, 归一化差值算法

JIANG Peihe, WANG Chenxu, GUO Gang, WEI Yinsheng. Research on Hardware Trojan Detection for FPGA Application[J]. Computer Engineering and Applications, 2021, 57(20): 119-124.

姜佩贺，王晨旭，郭刚，位寅生. 面向FPGA应用的硬件木马植入与检测技术研究[J]. 计算机工程与应用, 2021, 57(20): 119-124.

References

[1] GIRI N，ANANDAKUMAR N N.Design and analysis of hardware Trojan threats in reconfigurable hardware[C]//2020 International Conference on Emerging Trends in Information Technology and Engineering，2020：1-5.
[2] TEHRANIPOOR M，KOUSHANFAR F.A survey of hardware trojan taxonomy and detection[J].IEEE Design and Test of Computers，2010，27（1）：10-25.
[3] 邹程，张鹏，邓高明，等.基于功率旁路泄露的硬件木马设计[J].计算机工程，2011，37（11）：135-137.
ZOU C，ZHANG P，DENG G M，et al.Design of hardware trojan based on power side-channel exposure[J].Computer Engineering，2011，37（11）：135-137.
[4] 张鹏，邹程，邓高明，等.基于电磁泄漏相关性分析的硬件木马设计[J].华中科技大学学报（自然科学版），2010，38（10）：22-25.
ZHANG P，ZOU C，DENG G M，et al.A hardware trojans design using the correlation analysis of electromagnetic emanation[J].Journal of Huazhong University of Science and Technology（Natural Science），2010，38（10）：22-25.
[5] CHEN Z，GUO S，WANG J，et al.Toward FPGA security in IoT：a new detection technique for hardware Trojans[J].IEEE Internet of Things Journal，2019，6（4）：7061-7068.
[6] WANG X X，TEHRANIPOOR M，PLUSQUELLIC J.Detecting malicious inclusions in secure hardware：challenges and solutions[C]//IEEE International Workshop on Hardware-Oriented Security and Trust，2008：15-19.
[7] JIN Y，KUPP N，MAKRIS Y.Experiences in hardware Trojan design and implementation[C]//IEEE International Workshop on Hardware-Oriented Security and Trust，2009：50-57.
[8] WOLFF F，PAPACHRISTOU C，BHUNIA S，et al.Towards Trojan-free trusted ICs：problem analysis and detection scheme[C]//Design，Automation and Test in Europe，2008：1362-1365.
[9] CHAKRABORTY R S，PAUL S，BHUNIA S.On-demand transparency for improving hardware Trojan detectablity[C]//IEEE International Workshop on Hardware-Oriented Security and Trust，2008：48-50.
[10] RAD R M，WANG X X，et al.Power supply signal calibration techniques for improving detection resolution to hardware Trojans[C]//IEEE/ACM International Conference on Computer-Aided Design，2008：632-639.
[11] BANGA M，MICHAEL S H.A region based approach for the identification of hardware Trojans[C]//IEEE International Workshop on Hardware-Oriented Security and Trust，2008：40-47.
[12] NARASIMHAN S，DU D D.Multiple-parameter side-channel analysis：a non-invasive hardware Trojan detection approach[C]//IEEE International Symposium on Hardware-Oriented Security and Trust，2010：13-18.
[13] ZHANG X，FERRAIUOLO A，TEHRANIPOOR M.Detection of trojans using a combined ring oscillator network and off-chip transient power analysis[J].ACM Journal on Emerging Technologies in Computing Systems，2013，9（3）：5109-5114.
[14] ZHANG X，TEHRANIPOOR M，PLUSQUELLIC J.RON：an on-chip ring oscillator network for hardware Trojan detection[C]//IEEE International Workshop on Hardware-Oriented Security and Trust，2008.
[15] FERRAIUOLO A，ZHANG X，TEHRANIPOOR M.Experimental analysis of a ring oscillator network for hardware trojan detection in a 90nm ASIC[C]//2012 IEEE/ACM International Conference on Computer-Aided Design（ICCAD），2012：37-42.
[16] KITSOS P，VOYIATZIS A G.FPGA Trojan detection using length-optimized ring oscillators[C]//2014 17th Euromicro Conference on Digital System Design，2014：675-678.
[17] PIRPILIDIS F，VOYIATZIS A G，PYRGAS L，et al.An efficient reconfigurable ring oscillator for hardware trojan detection[C]//Proceedings of the 20th Pan-Hellenic Conference on Informatics，2016：1-6.
[18] 赵毅强，刘阿强，何家骥，等.基于RO硬件木马检测的工艺偏差校正方法[J].天津大学学报（自然科学与工程技术版），2018，51（6）：645-650.
ZHAO Y Q，LIU A Q，HE J J，et al.Process variation calibration method for RO-based hardware Trojan detection technology[J].Journal of Tianjin University（Science and Technology），2018，51（6）：645-650.
[19] ALSAIARI U，GEBALI F.Hardware Trojan detection using reconfigurable assertion checkers[J].IEEE Transactions on Very Large Scale Integration（VLSI） Systems，2019，27（7）：1575-1586.
[20] RABAEY J M，CHANDRAKASAN A P，NIKOLIC B.Digital integrated circuits：a design perspective[M].Upper Saddle River，NJ：Pearson Education，2003.