Author Topic: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs  (Read 479 times)

0 Members and 1 Guest are viewing this topic.

Offline llkiwi2006

  • Regular Contributor
  • *
  • Posts: 102
  • Country: nz
https://www.usenix.org/conference/usenixsecurity20/presentation/ender

Quote
3.5 Wrap-Up: What Went Wrong?

These two attacks show again that nowadays, cryptographic primitives hold their security assumptions, but their embedding in a real-world protocol is often a pitfall. Two issues lead to the success of our attacks: First, the decrypted data are interpreted by the configuration logic before the HMAC validates them. Generally, a malicious bitstream crafted by the attacker is checked at the end of the bitstream, which would prevent an altered bitstream content from running on the fabric. Nevertheless, the attack runs only inside the configuration logic, where the command execution is not secured by the HMAC.

Second, the HMAC key KHMAC is stored inside the encrypted bitstream. Hence, an attacker who can circumvent the encryption mechanism can read KHMAC and thus calculate the HMAC tag for a modified bitstream. Further, they can change KHMAC, as the security of the key depends solely on the confidentiality of the bitstream. The HMAC key is not secured by other means. Therefore, an attacker who can circumvent the encryption mechanism can also bypass the HMAC validation.

Epic fail by Xilinx?
 
The following users thanked this post: EEVblog, nctnico, I wanted a rude username

Offline amyk

  • Super Contributor
  • ***
  • Posts: 6813
Re: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs
« Reply #1 on: April 20, 2020, 02:56:59 am »
Epic win for everyone else. ;)
 

Offline brucehoult

  • Super Contributor
  • ***
  • Posts: 1526
  • Country: us
  • Formerly SiFive, Samsung R&D
Re: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs
« Reply #2 on: April 20, 2020, 04:39:12 am »
Epic win for everyone else. ;)

Would love to be able to use Open Source tools on my Arty / Zynq boards!
 

Offline llkiwi2006

  • Regular Contributor
  • *
  • Posts: 102
  • Country: nz
Re: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs
« Reply #3 on: April 20, 2020, 12:45:15 pm »

Would love to be able to use Open Source tools on my Arty / Zynq boards!


There seems to be good progress on that with the SymbiFlow project, although not directly related to bitstream encryption. What we can get out of this is being able to modify / create custom bitstreams for products that employ bitstream encryption. Which I reckon is still a win for open source.
 

Online asmi

  • Super Contributor
  • ***
  • Posts: 1077
  • Country: ca
Re: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs
« Reply #4 on: April 20, 2020, 01:34:00 pm »
Would love to be able to use Open Source tools on my Arty / Zynq boards!
What does bitstream encryption have to do with OS tools? This is an optional feature which I'm yet to actually see used in the field.


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf