@inproceedings{e1fab3a406984a58a2e7db19056f798b,
title = "CCFI-Cache: A transparent and flexible hardware protection for code and control-flow integrity",
abstract = "In this paper we present a hardware based solution to verify simultaneously Code and Control-Flow Integrity (CCFI), aiming at protecting microcontrollers against both cyber-and physical attacks. This solution is non-intrusive as it does not require any modification of the CPU core. It relies on two additional hardware blocks external to the CPU: The first one - called CCFI-cache - acts as a dedicated cache for the storage of information to check the code and control-flow integrity, and the second one - CCFI-checker - performs control-flow and code integrity verification. Based on a RISC-V platform implementation, we show that the proposed scheme is able to perform online CCFI validation at the price of a small hardware area overhead and doubling the size of the. text section. In most cases, the impact on the run-time performance is on average 32 percent, offering for the first time a generic and practical hardware-enabled cyber-security solution.",
keywords = "Code Integrity, Control Flow Graph, Control-Flow Integrity, Cybersecurity, Hardware Protection, Hardware security, Instruction Hashing",
author = "Danger, \{Jean Luc\} and Adrien Facon and Sylvain Guilley and Karine Heydemann and Ulrich Kuhne and \{Si Merabet\}, Abdelmalek and Michael Timbert",
note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 21st Euromicro Conference on Digital System Design, DSD 2018 ; Conference date: 29-08-2018 Through 31-08-2018",
year = "2018",
month = oct,
day = "12",
doi = "10.1109/DSD.2018.00093",
language = "English",
series = "Proceedings - 21st Euromicro Conference on Digital System Design, DSD 2018",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "529--536",
editor = "Nikos Konofaos and Martin Novotny and Amund Skavhaug",
booktitle = "Proceedings - 21st Euromicro Conference on Digital System Design, DSD 2018",
}