ACM

Communications of the ACM

Home/Magazine Archive/January 2021 (Vol. 64, No. 1)/The Die is Cast/Abstract

Practice

The Die is Cast

By Edlyn V. Levine
Communications of the ACM, January 2021, Vol. 64 No. 1, Pages 56-60
10.1145/3424264
Comments (1)

View as: Print Mobile App ACM Digital Library In the Digital Edition Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook

die with molten circuitry, illustration — Credit: dgtl.escapism

In 2011, a fictitious company was created by the U.S. Government Accountability Office (GAO) to gain access to vendors of military-grade integrated circuits (ICs) used in weapons systems. Upon successfully joining online vendor platforms, the GAO requested quotes for bogus part numbers not associated with any authentic electronics components. No fewer than 40 offers returned from vendors in China to supply the bogus chips, and the GAO successfully obtained bogus parts from a handful of these vendors.³ The ramifications of the GAO findings are stark: The assumption of trusted hardware is inappropriate to invoke for cybersecure systems.

Injection of counterfeit electronics into the market is only a subset of vulnerabilities that exist in the global IC supply chain. Other types of attacks include trojans built into the circuitry, piracy of intellectual property, and reverse engineering. Modern ICs are exceptionally complex devices, consisting of upward of billions of transistors, miles of micron-scale interconnecting wires, advanced packaging configurations, and multisystem integration into chips sized on the order of a U.S. quarter. These ICs are designed, manufactured, and assembled by an equivalently complicated, globally distributed supply chain. A semiconductor company can have more than 16,000 suppliers spread around the world.¹⁰ While globalization has drastically reduced industry costs by tapping inexpensive labor markets and economies of scale, it has simultaneously opened many windows of opportunity for attackers to maliciously modify hardware without the knowledge of original device manufacturers (ODMs) or their customers.

Comments

Eduard De Jong

December 22, 2020 12:06

Hardware based security for silicon has been the focus of manufacturing smartcards ever since they were introduced in the early eighties. This article clearly addresses the (im)possibilities to achieve hardware based security at the much larger scale of CPUs with trust zones.
The smartcard industry emerged in force in the mid nineties enabled by JavaCard technology on the software side and pulled by ever growing demand with the rise of GSM as a world spanning system and has always been based on a tightly controlled supply chain, both addressing the hardware and software. The level of security of many of the currently available smartcards chips has been evaluated according the the highest levels of Common Criteria.
This paper clearly identifies the great gap between the two different approaches to hardware based security.

Displaying 1 comment

Log in to Read the Full Article

Sign In

Sign in using your ACM Web Account username and password to access premium content if you are an ACM member, Communications subscriber or Digital Library subscriber.

Need Access?

Please select one of the options below for access to premium content and features.

Create a Web Account

If you are already an ACM member, Communications subscriber, or Digital Library subscriber, please set up a web account to access premium content on this site.

Join the ACM

Become a member to take full advantage of ACM's outstanding computing information resources, networking opportunities, and other benefits.

Subscribe to Communications of the ACM Magazine

Get full access to 50+ years of CACM content and receive the print version of the magazine monthly.

Purchase the Article

Non-members can purchase this article or a copy of the magazine in which it appears.