Skip to content
/ xdivinsa Public

XDIVINSA: eXtended DIVersifying INStruction Agent to mitigate power side-channel leakage

License

Notifications You must be signed in to change notification settings

scarv/xdivinsa

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

XDivinsa: A Diversifying Instruction Agent

This repository contains a frame-work to evaluate XDivinsa based on the instruction set extension (ISE) of RISCV. XDivinsa is a combination of a hardware-based hiding technique and diversified ISE. The technique is realised by injecting random delay and dummy operations in between duration of instruction execution based on hardware diversification. This makes the instruction performance diversifying in time and power dimention. XDivinsa can be effectively, automatically integrated into cryptosystem without needing cryptographic algorithm experts to mitigate side-channel analysis attacks. The work is published in [1].

Organisation

├── bin                - scripts (e.g., environment configuration)
├── fpga               - source code for the FPGA implementation using Vivado
│   ├── board          - source for supporting a specific board (e.g., sakura-x)
│   ├── script         - scripts for handling the FPGA bitstream on Vivado
│   └── soc            - the Vivado projects based on Picorv and Rocketchip SoC.
├── rtl                - the implementations of the XDivinsa co-processor.
├── src                - source code for embedded software
│   ├── common           - shared code resources
│   ├── helloworld       - source code for the hello-world program.
│   ├── test-aes         - source code for the AES case-study.
│   ├── test-xdivinsa    - source code for verifying the XDivinsa ISE.
│   └── ...              - ...
├── toolchain          - scripts to install the XDivinsa-supporting RISC-V toolchain.
└── work               - working directory for build

Quickstart

  • For seting up the repository

    • Fix path for the RISCV toolchain, e.g.,

      export RISCV="/opt/xdi-riscv"
    • Fix path for the installed VIVADO Design suite, e.g.,

      export VIVADO_TOOL_DIR="/opt/Xilinx/Vivado/2018.2"
    • Clone the repository and setup environment.

      git clone https://github.com/scarv/xdivinsa ./xdivinsa
      cd ./xdivinsa
      source bin/source.me.sh
    • Build the XDivinsa-supporting RISC-V toolchain.

      make toolchain 
  • Build the FPGA implementation for XDivinsa-RISCV systems.

    • Select a RISC-V base core, i.e., Picorv or Rocket-Chip.

      export CORE=[picorv-xdivinsa/rocket-xdivinsa]
    • Build the Vivado project for the FPGA implementation of the XDivinsa-supporting RISC-V processor system.

      make verilog
      make fpga-project
    • Compile the FPGA implementation to generate bitstream.

      make bitstream
  • Run the testing software on the FPGA board.

    • Do the board setup

    • Open a serial port via /dev/ttyUSB in another terminal to monitor the program running, e.g.,

      microcom -p /dev/ttyUSB0 -s 115200
    • Build the testing sofware for the XDivinsa ISE.

      make -B test-xdivinsa
    • Update and download bitstream.

      make bit-update
      make program-fpga
  • Build and run the AES case-study on the FPGA board.

    • Build and run the unprotected AES encryption
      make build-aes
      make program-fpga
    • Build and run the protected AES encryption using XDIVINSA
      make build-protected-aes
      make program-fpga

Board setup

The image below illustrates the setup of the Sakura-X board for the system.

Board Setup

The system has a serial port to communicate to the host computer. A USB-UART cable (like Adafruit USB to TTL Serial Cable) is needed to connect directly from a USB port of the host computer to the pins of the serial port on FPGA board.

References and Useful links:

  • [1] Thinh H. Pham, Ben Marshall, Alexander Fell, Siew-Kei Lam, Daniel Page, "XDIVINSA: eXtended DIVersifying INStruction Agent to Mitigate Power Side-Channel Leakage", The 32nd IEEE International Conference on Application-specific Systems, Architectures and Processors (ASAP2021).
  • [2] Yang, B., Rožic, V., Grujic, M., Mentens, N., & Verbauwhede, I. (2018). ES-TRNG: A High-throughput, Low-area True Random Number Generator based on Edge Sampling. IACR Transactions on Cryptographic Hardware and Embedded Systems, 2018(3), 267-292. https://doi.org/10.13154/tches.v2018.i3.267-292
  • RocketChip Core - The RocketChip core implementation being used in the platform.
  • Picorv32 Core - The picorv32 core implementation being used in the platform.
  • Sakura-x platform - Sakura-X board homepage

Acknowledgements

This work has been supported in part by EPSRC via grant EP/R012288/1 (under the RISE programme).