As the world embraces the Internet of Things (IoT), more and more everyday appliances are being connected to the Internet so that people can monitor those appliances remotely. While this makes our lives more convenient, there is a looming threat of cybercriminals using these devices to gain access to sensitive data.
Now, scientists from the National University of Singapore’s School of Computing (NUS Computing) have made it easier to guard against that. They have developed a software tool that can simulate hacker attacks, and which provide an automated way to protect the design. This helps designers create more secure computer chips.
The software works by simulating a physical hardware attack known as laser fault injection. To accomplish this on a real device, the cyber-criminal would first partially disassemble the hardware to gain access to its silicon chip without interrupting its operation. Then, they use a laser to generate a processor error. This throws the gates open, allowing them to extract data and security information.
Previously, it was expensive to protect chips against this kind of attack because they had to be tested manually. If the chip fails the test, the design must start over. The NUS software, called the Laser fault Attack Benchmark Suite or LABS, can now simulate attacks in a wide variety of situations and demonstrate how the chip reacts. All this can be done without having to manufacture a single chip. This helps chip designers figure out how to repel the attack, and even trick the attackers into thinking they have succeeded. With this software, chip manufacturers will be able to simulate any device, and results are available within minutes.
The NUS scientists, led by Assistant Professor Trevor E. Carlson and Professor Peh Li Shiuan, have made the software open source so researchers and the chip design community can use it, or help make it better.