Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Secure Code Execution: A Generic PUF-Driven System Architecture

: Kleber, S.; Unterstein, F.; Hiller, M.; Slomka, F.; Matousek, M.; Kargl, F.; Bösch, C.


Chen, L.:
Information security. 21st International Conference, ISC 2018 : Guildford, UK, September 9-12, 2018 : proceedings
Cham: Springer International Publishing, 2018 (Lecture Notes in Computer Science 11060)
ISBN: 978-3-319-99135-1
ISBN: 978-3-319-99136-8
Information Security Conference (ISC) <21, 2018, Guildford>
Fraunhofer AISEC ()

In his invited talk, joint between CHES 2016 and CRYPTO 2016 on the Future of Embedded Security, Paul Kocher suggested to move the security into chips because hardware is the lowest level and thus security can not be compromized by a lower layer. In this paper, we propose a generic PUF-driven secure code execution architecture that employs instruction-level code encryption. Our design foresees a tight integration of a Physically Unclonable Function (PUF) and the decryption of encrypted program code directly inside the processorâs instruction pipeline to avert revealing keys or decrypted code in externally accessible registers or memory. The architecture prevents code-injection by executing only code encrypted for individual target CPUs, has an adaptable impact on performance, and requires only minor changes to the software development process. Our PUF-based code encryption defends also from reverse engineering attempts and enforces IP protection. A proof-of-concept im plementation demonstrates the feasibility of our proposed architecture.