Type of Publication: Article in Collected Edition

CHASE: A Configurable Hardware-Assisted Security Extension for Real-Time Systems

Author(s):

Dessouky, Ghada; Zeitouni, Shaza; Ibrahim, Ahmad; Davi, Lucas; Sadeghi, Ahmad-Reza

Title of Anthology:

Proc. of 38th International Conference On Computer Aided Design (ICCAD)

Publisher:

Institute of Electrical and Electronics Engineers (IEEE)

Location(s):

Westminster, CO, USA

Publication Date:

2019

ISBN:

978-1-7281-2350-9

Digital Object Identifier (DOI):

doi:10.1109/ICCAD45719.2019.8942142

Citation:

Download BibTeX

Abstract

Real-time autonomous systems are becoming pervasive in many application domains such as vehicular ad-hoc networks, smart factories and delivery drones. The correct functioning of these real-time systems is timing-critical with hard deadlines. However, although they interact with other systems and exchange inputs/outputs with the physical world, they usually lack security mechanisms, which makes them susceptible to a wide range of attacks with critical consequences. Typically, this is because security mechanisms usually violate the real-time requirements of these systems and cannot be adjusted at runtime to provide the adequate security without compromising performance. In this paper, we propose a consolidated runtime-configurable hardware-assisted security extension called CHASE that supports different levels of security at runtime. Depending on the desired security level and the system real-time, availability or functionality requirements, CHASE can be configured accordingly at runtime, thus enabling the calibration of the security vs. performance trade-off. We analyze CHASE's effectiveness in providing different security guarantees against various adversarial capabilities, and show how this is achieved with reasonable logic overhead and minimal performance overhead.