论文信息 - Forward-Secure Content Distribution to Reconfigurable Hardware

Forward-Secure Content Distribution to Reconfigurable Hardware

Confidentiality and integrity of bitstreams and authenticated update of FPGA configurations are fundamental to trusted computing on reconfigurable technology. In this paper, we propose to provide these security services for digital content broadcast to FPGA-based devices. To that end, we introduce a new property we call forward security, which ensures that broadcast content can only be accessed by FPGA chips configured with the latest bitstream version. We describe the hardware architecture and communication protocols supporting this security property, and we evaluate the associated cost.

Lionel Torres | Ruby B. Lee | Catherine H. Gebotys | David Champagne | Reouven Elbaz

[1] Bart Preneel,et al. Embedded Trusted Computing with Authenticated Non-volatile Memory , 2008, TRUST.

[2] Moni Naor,et al. Revocation and Tracing Schemes for Stateless Receivers , 2001, CRYPTO.

[3] Avishai Wool. Key management for encrypted broadcast , 1998, CCS '98.

[4] Jeremy Horwitz. A Survey of Broadcast Encryption , 2003 .

[5] Tim Güneysu,et al. Dynamic Intellectual Property Protection for Reconfigurable Devices , 2007, 2007 International Conference on Field-Programmable Technology.

[6] Ahmed Obied,et al. Broadcast Encryption , 2008, Encyclopedia of Multimedia.

[7] Ahmad-Reza Sadeghi,et al. Reconfigurable trusted computing in hardware , 2007, STC '07.

[8] Yi Mu,et al. Robust and Secure Broadcasting , 2001, INDOCRYPT.

[9] Eric Rescorla,et al. The Transport Layer Security (TLS) Protocol Version 1.1 , 2006, RFC.

[10] Lionel Torres,et al. Secure FPGA configuration architecture preventing system downgrade , 2008, 2008 International Conference on Field Programmable Logic and Applications.

[11] Saar Drimer,et al. Volatile FPGA design security { a survey , 2008 .

[12] Tim Dierks,et al. The Transport Layer Security (TLS) Protocol Version 1.2 , 2008 .

[13] Ross J. Anderson,et al. Two remarks on public key cryptology , 2002 .

[14] Ahmad-Reza Sadeghi,et al. Secure Software Delivery and Installation in Embedded Systems , 2005, ISPEC.