Paper Info
Title
Towards Side-Channel Secure Firmware Updates - A Minimalist Anomaly Detection Approach.
Abstract
Side-channel attacks represent a serious threat to the securityof encrypted firmware updates: if the secret key is leaked, then the firmware is exposed and can be replaced by malicious code or be stolen. In this work, we show how simple anomaly detection measures can effectively increase the security of encrypted firmware updates at minimum cost. Our method is based on the simple observation that firmware payloads have a specific structure (machine code), which canbe easily verified at runtime in order to react to side-channel attacks. This enables performing proactive measures to limit the number of measurements that can be taken when a side-channel attack is detected. We tested the viability of our approach through simulations and verified its effectiveness in practice on a TI MSP430 microcontroller using a softwareimplementation of AES. Our approach represents a step forward towards increasing the security of firmware updates against side-channel attacks: it effectively increases the security of firmware updates, has only negligible overhead in terms of code size and runtime, requires no modification to the underlying cryptographic implementations, and can beused in conjunction with countermeasures such as masking and re-keying to further enhance the side-channel resistance of a device.
Year
Venue
DocType
2016
FPS
Conference
Citations 
PageRank 
References 
0
0.34
0
Authors
4
Name
Order
Citations
PageRank
Oscar M. Guillen152.17
Fabrizio De Santis28410.44
Ralf Brederlow38114.48
georg sigl4385.70