This paper is a short summary of our real-world side-channel analysis of the bitstream encryption mechanism provided by Xilinx Virtex FPGAs. This work covers our results analyzing the Virtex 4 and 5 family showing that the encryption mechanism can be completely broken with moderate effort. The presented results provide an overview of a practical real-world analysis and should help practitioners to judge the necessity to implement side-channel countermeasures. We demonstrate sophisticated attacks on off-the-shelf FPGAs that go far beyond schoolbook attacks on 8-bit AES S-boxes. We were able to perform the key extraction by using only the measurements of a single power-up. Access to the key allows cloning and manipulating a design, which has been encrypted to protect the intellectual property and to prevent fraud. As a consequence, the target product faces serious threats like IP theft and more advanced attacks such as reverse engineering or the introduction of hardware Trojans. To the best of our knowledge, this is the first successful attack against the bitstream encryption of Xilinx Virtex 4 and Virtex 5 reported in the open literature.
[1]
Christof Paar,et al.
On the Power of Power Analysis in the Real World: A Complete Break of the KeeLoqCode Hopping Scheme
,
2008,
CRYPTO.
[2]
Christof Paar,et al.
Breaking Mifare DESFire MF3ICD40: Power Analysis and Templates in the Real World
,
2011,
CHES.
[3]
Christophe Clavier,et al.
Correlation Power Analysis with a Leakage Model
,
2004,
CHES.
[4]
David Evans,et al.
Reverse-Engineering a Cryptographic RFID Tag
,
2008,
USENIX Security Symposium.
[5]
Steven Trimberger.
Trusted Design in FPGAs
,
2007,
2007 44th ACM/IEEE Design Automation Conference.
[6]
Paul C. Kocher,et al.
Differential Power Analysis
,
1999,
CRYPTO.
[7]
Jean-Baptiste Note,et al.
From the bitstream to the netlist
,
2008,
FPGA '08.
[8]
Alessandro Barenghi,et al.
On the vulnerability of FPGA bitstream encryption against power analysis attacks: extracting keys from xilinx Virtex-II FPGAs
,
2011,
CCS '11.