HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Security enhancements for FPGA-based MPSoCs: a boot-to-runtime protection flow for an embedded Linux-based system

Pascal Cotret 1 Florian Devic 2 Guy Gogniat 1 Benoit Badrignans 3 Lionel Torres 4
1 Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
2 LIRMM - Laboratoire d'Informatique de Robotique et de Microélectronique de Montpellier
3 NETHEOS - NETHEOS
4 SysMIC - Conception et Test de Systèmes MICroélectroniques
LIRMM - Laboratoire d'Informatique de Robotique et de Microélectronique de Montpellier
Abstract : Nowadays, embedded systems become more and more complex: the hardware/software codesign approach is a method to create such systems in a single chip which can be based on reconfigurable technologies such as FPGAs (Field-Programmable Gate Arrays). In such systems, data exchanges are a key point as they convey critical and confidential information and data are transmitted between several hardware modules and software layers. In case of an FPGA development life cycle, OS (Operating System) / data updates as runtime communications can be done through an insecure link: attackers can use this medium to make the system misbehave (malicious injection) or retrieve bitstream-related information (eavesdropping). Recent works propose solutions to securely boot a bitstream and the associated OS while runtime transactions are not protected. This work proposes a full boot-to-runtime protection flow of an embedded Linux kernel during boot and confidentiality/integrity protection of the external memory containing the kernel and the main application code/data. This work shows that such a solution with hardware components induces an area occupancy of 10% of a xc6vlx240t Virtex-6 FPGA while having an improved throughput for Linux booting and lowlatency security for runtime protection.
Document type :
Conference papers
Complete list of metadata

Cited literature [15 references]  Display  Hide  Download
https://hal.archives-ouvertes.fr/hal-00750339
Contributor : Cotret Pascal Connect in order to contact the contributor
Submitted on : Saturday, November 10, 2012 - 10:33:39 AM
Last modification on : Monday, April 4, 2022 - 9:28:14 AM
Long-term archiving on: : Monday, February 11, 2013 - 2:45:11 AM

File

Vignette du document
recosoc2012_cotret.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-00750339, version 1

Collections

UNIV-BREST | INSTITUT-TELECOM | CNRS | SYSMIC | ENIB | LAB-STICC | LIRMM | LIRMM_MIC | MIC | MIPS | UNIV-MONTPELLIER | AXESECULIRMM

Citation

Pascal Cotret, Florian Devic, Guy Gogniat, Benoit Badrignans, Lionel Torres. Security enhancements for FPGA-based MPSoCs: a boot-to-runtime protection flow for an embedded Linux-based system. ReCoSoC: Reconfigurable Communication-centric Systems-on-Chip, Jul 2012, York, United Kingdom. pp.1-8. ⟨hal-00750339⟩

Export

BibTeX TEI DC DCterms EndNote Datacite

Share

Metrics

Record views

402

Files downloads

430