Chip safety side channel analysis and fault injection system
An integrated circuit is a miniature electronic device or component. By using a certain process, the transistors, diodes, capacitors, resistors, inductors and other components and wiring required in a circuit are interconnected, fabricated on a semiconductor substrate, and then Encapsulated in a tube case. With the continuous development of integrated circuit manufacturing technology and the continuous improvement of market application requirements, the integration degree of integrated circuits is getting higher and higher, the processing rate is getting faster and faster, and the power consumption is getting smaller and smaller. SoC) era, which puts forward higher requirements for integrated circuit design, manufacturing, packaging, and testing.
Although my country's integrated circuit industry has developed rapidly in recent years, the scale of the industry has continued to expand, and the level of technology has continued to improve, but there is still a certain gap with foreign products. Therefore, testing services for integrated circuit products is to ensure chip quality and final application effect. It is an important means to promote the standardized and orderly development of the integrated circuit industry.
Semi-invasive attack means that the attacker removes the chip package from the front or back of the card, exposing the silicon substrate or top metal layer of the chip, but does not need to make electrical contact with the internal circuit. Sensitive information inside the chip, such as keys, memory contents, etc.
Semi-intrusive security testing means that the testing organization simulates an attacker and selects the optimal path to conduct a semi-intrusive attack on the security chip, and then evaluates the cost of the attack to determine whether the chip meets the security requirements.
Semi-intrusive attack security threat analysis
As chip feature sizes shrink and internal circuit complexity increases, invasive attacks become more demanding and expensive. Semi-intrusive attacks do not require expensive tools and get results in a relatively short period of time, allowing for fast and powerful attacks using inexpensive and simple equipment. With a semi-intrusive attack, an attacker can:
Tampering with the program flow and memory content to obtain sensitive operation permissions;
Decipher the key through differential error analysis, electromagnetic radiation analysis and other techniques;
Direct access to memory contents through imaging techniques.
Types of semi-intrusive attacks
Semi-intrusive attack techniques are roughly divided into the following three categories
(1) Fault attack
Including light injection, electromagnetic manipulation, radiation injection and other attacks, this kind of attack is to artificially introduce instantaneous controllable interference signals at a specific physical location at a specific moment of chip operation, change the chip program flow and memory content, and obtain sensitive permissions, operations and passwords. sensitive information such as keys.
(2) Imaging analysis attack
Including optical and laser imaging techniques, voltage contrast attacks, etc., such attacks are often used to directly read memory contents
(3) Electromagnetic radiation analysis
Obtain
sensitive
Protection against semi-intrusive attacks
The magic height is one foot, and the road is ten feet high. With the continuous emergence of semi-intrusive attack technologies, the security requirements of financial IC card chips have risen.
On the one hand, it is necessary to consider adding various protection mechanisms in the design and testing stages of financial IC cards.
Various environmental sensors need to be added inside the chip, and a full range of error detection and correction processing should be added to the chip to prevent error injection attacks.
Address and data obfuscation of memory contents, and encrypted transmission of addresses and data to prevent optical imaging attacks
Increase electromagnetic power consumption hidden protection technology to prevent side channel attacks
When there is a security threat to the chip hardware circuit, it is necessary to carry out system protection at the software level
The chip test channel security tool is widely used and verified by customers, and has high reliability, easy operation and mature stability. Market strategy and company positioning is a test system and tool provider, and its user groups include chip manufacturers, scientific research institutes, government agencies, security laboratories, solution providers, etc. Its areas of focus include: Pay TV Access Systems, Mobile Payments, Smart Cards, Smart Meters, etc. Side channel analysis system, fault injection system, Java test system. New products such as high-performance analysis equipment and WBC (white box encryption tool) realize the perfect combination of cutting-edge technology and advanced tools.
The company is the first to master the latest attack analysis methods and algorithms, and has a clear understanding of industry trends, so its products can continue to maintain unique technological advancements and comply with EMVCo, CC and other organizational security standards.
Secure and embedded designs for chip technology can be tested to assess their secure operability and security level in any environment. As a leading security evaluation laboratory in the global market for the pay TV and digital streaming media industries.
For more information contact Q:3040963362
