• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

用于嵌入式系统中实时保障动态数据安全的高效并行密码加速器

High-Efficiency Parallel Cryptographic Accelerator for Real-Time Guaranteeing Dynamic Data Security in Embedded Systems.

作者信息

Zhang Zhun, Wang Xiang, Hao Qiang, Xu Dongdong, Zhang Jinlei, Liu Jiakang, Ma Jinhui

机构信息

School of Electronic and Information Engineering, Beihang University, Beijing 100191, China.

出版信息

Micromachines (Basel). 2021 May 15;12(5):560. doi: 10.3390/mi12050560.

DOI:10.3390/mi12050560
PMID:34063441
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC8155854/
Abstract

Dynamic data security in embedded systems is raising more and more concerns in numerous safety-critical applications. In particular, the data exchanges in embedded Systems-on-Chip (SoCs) using main memory are exposing many security vulnerabilities to external attacks, which will cause confidential information leakages and program execution failures for SoCs at key points. Therefore, this paper presents a security SoC architecture with integrating a four-parallel Advanced Encryption Standard-Galois/Counter Mode (AES-GCM) cryptographic accelerator for achieving high-efficiency data processing to guarantee data exchange security between the SoC and main memory against bus monitoring, off-line analysis, and data tampering attacks. The architecture design has been implemented and verified on a Xilinx Virtex-5 Field Programmable Gate Array (FPGA) platform. Based on evaluation of the cryptographic accelerator in terms of performance overhead, security capability, processing efficiency, and resource consumption, experimental results show that the parallel cryptographic accelerator does not incur significant performance overhead on providing confidentiality and integrity protections for exchanged data; its average performance overhead reduces to as low as 2.65% on typical 8-KB I/D-Caches, and its data processing efficiency is around 3 times that of the pipelined AES-GCM construction. The reinforced SoC under the data tampering attacks and benchmark tests confirms the effectiveness against external physical attacks and satisfies a good trade-off between high-efficiency and hardware overhead.

摘要

嵌入式系统中的动态数据安全在众多安全关键型应用中引发了越来越多的关注。特别是,使用主存储器的片上系统(SoC)中的数据交换正将许多安全漏洞暴露给外部攻击,这将在关键点导致SoC的机密信息泄露和程序执行失败。因此,本文提出了一种安全SoC架构,集成了一个四路并行的高级加密标准-伽罗瓦/计数器模式(AES-GCM)加密加速器,以实现高效的数据处理,保证SoC与主存储器之间的数据交换安全,抵御总线监控、离线分析和数据篡改攻击。该架构设计已在赛灵思Virtex-5现场可编程门阵列(FPGA)平台上实现并验证。基于对加密加速器在性能开销、安全能力、处理效率和资源消耗方面的评估,实验结果表明,并行加密加速器在为交换数据提供保密性和完整性保护时不会产生显著的性能开销;在典型的8KB I/D缓存上,其平均性能开销低至2.65%,其数据处理效率约为流水线式AES-GCM结构的3倍。在数据篡改攻击和基准测试下强化后的SoC证实了其抵御外部物理攻击的有效性,并在高效性和硬件开销之间实现了良好的权衡。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/eab23aab6824/micromachines-12-00560-g013.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/df8db91b2eb6/micromachines-12-00560-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/42784df68bad/micromachines-12-00560-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/a8451b402744/micromachines-12-00560-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/49e99b6ec5e6/micromachines-12-00560-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/6d46126a532a/micromachines-12-00560-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/ded47ec53d11/micromachines-12-00560-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/3d1b7996a8fb/micromachines-12-00560-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/f7352dea9a91/micromachines-12-00560-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/558ad99660c7/micromachines-12-00560-g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/5af8b914c7dd/micromachines-12-00560-g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/b22f607e6fe5/micromachines-12-00560-g011.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/bda144785cc3/micromachines-12-00560-g012.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/eab23aab6824/micromachines-12-00560-g013.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/df8db91b2eb6/micromachines-12-00560-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/42784df68bad/micromachines-12-00560-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/a8451b402744/micromachines-12-00560-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/49e99b6ec5e6/micromachines-12-00560-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/6d46126a532a/micromachines-12-00560-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/ded47ec53d11/micromachines-12-00560-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/3d1b7996a8fb/micromachines-12-00560-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/f7352dea9a91/micromachines-12-00560-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/558ad99660c7/micromachines-12-00560-g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/5af8b914c7dd/micromachines-12-00560-g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/b22f607e6fe5/micromachines-12-00560-g011.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/bda144785cc3/micromachines-12-00560-g012.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/39c6/8155854/eab23aab6824/micromachines-12-00560-g013.jpg

相似文献

1
High-Efficiency Parallel Cryptographic Accelerator for Real-Time Guaranteeing Dynamic Data Security in Embedded Systems.用于嵌入式系统中实时保障动态数据安全的高效并行密码加速器
Micromachines (Basel). 2021 May 15;12(5):560. doi: 10.3390/mi12050560.
2
Hardware-Assisted Security Monitoring Unit for Real-Time Ensuring Secure Instruction Execution and Data Processing in Embedded Systems.用于实时确保嵌入式系统中安全指令执行和数据处理的硬件辅助安全监控单元
Micromachines (Basel). 2021 Nov 26;12(12):1450. doi: 10.3390/mi12121450.
3
Design and Analysis of Area and Energy Efficient Reconfigurable Cryptographic Accelerator for Securing IoT Devices.面向物联网设备安全保障的面积和能量高效可重构加密加速器的设计与分析。
Sensors (Basel). 2022 Nov 25;22(23):9160. doi: 10.3390/s22239160.
4
Securing Embedded System from Code Reuse Attacks: A Lightweight Scheme with Hardware Assistance.通过硬件辅助的轻量级方案保护嵌入式系统免受代码重用攻击。
Micromachines (Basel). 2023 Jul 29;14(8):1525. doi: 10.3390/mi14081525.
5
Multi-Unit Serial Polynomial Multiplier to Accelerate NTRU-Based Cryptographic Schemes in IoT Embedded Systems.用于加速物联网嵌入式系统中基于NTRU的加密方案的多单元串行多项式乘法器。
Sensors (Basel). 2022 Mar 7;22(5):2057. doi: 10.3390/s22052057.
6
Hybrid Pipeline Hardware Architecture Based on Error Detection and Correction for AES.基于高级加密标准(AES)错误检测与纠正的混合流水线硬件架构
Sensors (Basel). 2021 Aug 22;21(16):5655. doi: 10.3390/s21165655.
7
Dynamically Reconfigurable Encryption and Decryption System Design for the Internet of Things Information Security.物联网信息安全的动态可重构加密与解密系统设计。
Sensors (Basel). 2019 Jan 3;19(1):143. doi: 10.3390/s19010143.
8
DITES: A Lightweight and Flexible Dual-Core Isolated Trusted Execution SoC Based on RISC-V.基于 RISC-V 的轻量级灵活双核隔离可信执行 SoC
Sensors (Basel). 2022 Aug 10;22(16):5981. doi: 10.3390/s22165981.
9
Implementation of Speed-Efficient Key-Scheduling Process of AES for Secure Storage and Transmission of Data.用于数据安全存储与传输的AES快速高效密钥调度过程的实现
Sensors (Basel). 2021 Dec 14;21(24):8347. doi: 10.3390/s21248347.
10
Efficient Deconvolution Architecture for Heterogeneous Systems-on-Chip.用于异构片上系统的高效反卷积架构
J Imaging. 2020 Aug 25;6(9):85. doi: 10.3390/jimaging6090085.

引用本文的文献

1
A Hardware Security Protection Method for Conditional Branches of Embedded Systems.一种针对嵌入式系统条件分支的硬件安全保护方法。
Micromachines (Basel). 2024 Jun 5;15(6):760. doi: 10.3390/mi15060760.
2
Open-Source FPGA Coprocessor for the Doppler Emulation of Moving Fluids.用于移动流体多普勒仿真的开源现场可编程门阵列协处理器
Micromachines (Basel). 2021 Dec 12;12(12):1549. doi: 10.3390/mi12121549.