Introduction

Question 1

Hardware Trojans

Answer 1

An attacker either in the design house or in the
foundry may add malicious circuits or modify existing circuits to bypass,
disable the security fence or destroy the chip.

Question 2

IP piracy and IC overbuilding

Answer 2

An IP user or a rogue foundry may
illegally pirate the IP without the knowledge and consent of the designer. A
malicious foundry may build more than the required number of ICs and sell
the excess ICs in the gray market.

Question 3

Reverse engineering (RE):

Answer 3

An attacker can reverse engineer the IC/IP
design to his/her desired abstraction level. He can then reuse the recovered
IP or improve it.

Question 4

Side-channel analysis:

Answer 4

An attacker can extract the secret information or
secret keys by exploiting a physical modality (power consumption, timing, or
electromagnetic emission) of the hardware that executes the target
application.

Question 5

Counterfeiting:

Answer 5

An attacker illegally forges or imitates the original

component/design.

Question 6

IC

Answer 6

Integrated Circuit

Question 7

Integrated Circuit (IC) Supply Chain And Security

Answer 7

Arising hardware security problems because of the global
trends in IC design, manufacturing, and distribution in the
supply chain.

Question 8

Physical attack requirements

Answer 8

-direct access to the chip -connection to signals m equipment and knowledge

Question 9

Physical attack Interaction:

Answer 9

Exploiting
some physical
characteristics of the
device

Question 10

Physical attack Exploitation

Answer 10

Analyzing the
gathered information to
recover the secret

Question 11

Attackers Class I: clever outsiders

Answer 11

• Insufficient knowledge of
  the system
• Limited access to the
  equipment and tools

Question 12

Attackers Class II: knowledgeable

insiders

Answer 12

-Knowledge of the system
-Access to tools and
equipment

Question 13

Attackers Class III: funded

organizations

Answer 13

-Access to all resources

Question 14

Attacker Motivations

Answer 14

-Direct theft of service or
money
-Sell of products
-Denial of Service

Question 15

Cryptanalysis vs. Physical Attacks

Answer 15

• Cryptanalysis: mathematical analysis to find the theoretical weakness
• Physical attacks: exploit weakness in the implementation of the cryptographic algorithms

Question 16

Modern Cryptographic Algorithms

Answer 16

• Symmetric-key and public-key cryptography
  -Although the algorithm itself may not be broken, a
  particular implementation may be vulnerable to
  attacks.

Question 17

Kerckhoffs’s principle:

Answer 17

A cryptosystem should be
secure even if everything about the system, except
the key, is public knowledge.
- For this reason modern cryptography algorithms get
evaluated and analyzed by the community, e.g., AES
standard process.

Question 18

Non-invasive attacks

Answer 18

passive vs. active
- No device damage, no tamper
evidence
- Most low cost and repeatable

Question 19

Invasive attacks

Answer 19

- Direct access to the inside of the
chip/device
- Reversible vs irreversible
- Device damaged or tamper
evidence left

Question 20

Semi-invasive attacks

Answer 20

• Access to the surface of the chip
• but will not create contacts with
  internal wires
• Normally does not damage the system
• May or may not leave tamper evidence
• Moderate cost and some special skills
• Repeatable
• Cost and required skills vary, normally high

Question 21

Side-channel attacks

Answer 21

-monitor/measure chip’s physical characteristics (power,
current, timing, EM radiation, etc.) during its normal
operation
- perform data analysis to learn information

Question 22

Software attacks (non-invasive)

Answer 22

• use normal I/O interface
• exploit known security vulnerabilities in protocols, algorithms
  and their software implementation

Question 23

Reverse engineering (invasive)

Answer 23

• study chip’s inner structure and functionality

- high cost, the similar capability of the designer

Question 24

Micro-probing (invasive)

Answer 24

• directly access the chip surface

- observe, manipulate, interfere with the chip

Question 25

Fault generation (semi- or non-invasive)

Answer 25

• run in abnormal environmental conditions
• cause chip to malfunction, leak information, give additional
  access