公开(公告)号：WO2014144857A3

公开(公告)日：2014-09-18

申请号：PCT/US2014/029444

申请日：2014-03-14

Applicant: POWER FINGERPRINTING INC.

Inventor： AGUAYO GONZALEZ, Carlos R. ,  REED, Jeffrey H. ,  CHEN, Steven C.

IPC: G06F11/22 ,  G06F11/30

Abstract: A power fingerprinting system is adopted for assessing integrity of a target computer-based system. In one implementation, the power fingerprinting system may receive, at a first module, side-channel information of a first target component of a system, the first module being collocated with the first target component; obtain a power fingerprint for the first target component based on the side-channel information for the first target component, the power fingerprint for the first target component representing a plurality of execution statuses of the first target component; receive, at a second module, side-channel information of a second target component of the system, the second module being collocated with the second target component, the power fingerprint for the second target component representing a plurality of execution statuses of the second target component; and obtain a power fingerprint for the second target component based on the side-channel information for the second target component.

公开(公告)号：WO2014144857A2

公开(公告)日：2014-09-18

申请号：PCT/US2014029444

申请日：2014-03-14

Applicant: POWER FINGERPRINTING INC

Inventor： AGUAYO GONZALEZ CARLOS R ,  REED JEFFREY H ,  CHEN STEVEN C

IPC: G06F21/31

CPC classification number: G06F21/577 ,  G06F21/55 ,  G06F21/554 ,  G06F21/558 ,  G06F21/755 ,  G06F2221/034

Abstract: A power fingerprinting system is adopted for assessing integrity of a target computer-based system. In one implementation, the power fingerprinting system may receive, at a first module, side-channel information of a first target component of a system, the first module being collocated with the first target component; obtain a power fingerprint for the first target component based on the side-channel information for the first target component, the power fingerprint for the first target component representing a plurality of execution statuses of the first target component; receive, at a second module, side-channel information of a second target component of the system, the second module being collocated with the second target component, the power fingerprint for the second target component representing a plurality of execution statuses of the second target component; and obtain a power fingerprint for the second target component based on the side-channel information for the second target component.

Abstract translation: 采用电力指纹系统评估目标计算机系统的完整性。 在一个实现中，功率指纹系统可以在第一模块处接收系统的第一目标组件的侧信道信息，第一模块与第一目标组件并置; 基于所述第一目标分量的侧信道信息获得所述第一目标分量的功率指纹，所述第一目标分量的功率指纹表示所述第一目标分量的多个执行状态; 在第二模块处接收所述系统的第二目标组件的侧信道信息，所述第二模块与所述第二目标组件并置，所述第二目标组件的功率指纹表示所述第二目标组件的多个执行状态 ; 并且基于第二目标分量的侧信道信息获得用于第二目标分量的功率指纹。

公开(公告)号：WO2017096244A1

公开(公告)日：2017-06-08

申请号：PCT/US2016/064743

申请日：2016-12-02

Applicant: POWER FINGERPRINTING INC. ,  AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C.

Inventor： AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C. ,  REED, Jeffrey H.

IPC: G06F11/00 ,  G06F21/52 ,  G06F21/55 ,  G06F21/56

CPC classification number: G06F11/00 ,  G06F21/52 ,  G06F21/55 ,  G06F21/56 ,  G06F21/577 ,  G06F21/70

Abstract: Some embodiments described herein include a method to validate supply chains for electronic devices using side-channel information in a signature analysis. The method includes sending, to a target device, a first signal associated with a set of codes to be executed by the target device, and then receiving first side-channel information associated with the target device in response to the target device executing the set of codes. The method also includes determining second side-channel information associated with a simulated device in response to the set of codes. The method further includes comparing a discriminatory feature of the first side-channel information with a discriminatory feature of the second side-channel information to determine a characteristic of the target device based on a pre-determined characteristic of the simulated device. Finally, the method includes sending, to a user interface, a second signal associated with the characteristic of the target device.

Abstract translation: 这里描述的一些实施例包括一种在签名分析中验证使用边信道信息的电子设备的供应链的方法。 该方法包括向目标设备发送与将由目标设备执行的一组代码相关联的第一信号，并且然后响应于目标设备执行该组目标设备来接收与目标设备相关联的第一副信道信息 码。 该方法还包括响应于该组代码来确定与模拟设备相关联的第二侧信道信息。 该方法进一步包括将第一侧声道信息的识别特征与第二侧声道信息的识别特征进行比较，以基于模拟设备的预定特征来确定目标设备的特性。 最后，该方法包括向用户界面发送与目标设备的特性相关联的第二信号。

公开(公告)号：WO2018009511A1

公开(公告)日：2018-01-11

申请号：PCT/US2017/040676

申请日：2017-07-05

Applicant: POWER FINGERPRINTING INC. ,  AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C.

Inventor： AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C. ,  REED, Jeffrey H.

IPC: G06F21/31 ,  G06F21/52 ,  G06F21/55

CPC classification number: G01R19/04 ,  G06F11/0754 ,  G06F11/0793 ,  G06F11/3062 ,  G06F21/56 ,  G09C1/00 ,  H04L9/003

Abstract: Some embodiments described herein include an apparatus having a processor communicatively coupled to a memory. The processor is configured to monitor, at a characteristic controller, a first characteristic of an electronic device. The processor is then configured to receive side-channel signature analysis of the electronic device from a signature analyzer. The processor is configured to determine if the first characteristic of the electronic device has changed or will change in a predefined period of time based on the side-channel signature analysis. The processor is then configured to adjust a second characteristic of the electronic device and/or filtering characteristics such that the side-channel signature analysis reflects predefined side-channel behavior.

Abstract translation: 这里描述的一些实施例包括具有通信地耦合到存储器的处理器的装置。 处理器被配置为在特性控制器处监视电子设备的第一特性。 处理器然后被配置为从签名分析器接收电子设备的边信道签名分析。 处理器被配置为基于侧信道签名分析来确定电子设备的第一特性是否已经改变或将在预定时间段内改变。 处理器然后被配置为调整电子设备的第二特性和/或滤波特性，使得侧信道签名分析反映预定义的侧信道行为。

公开(公告)号：WO2018009510A1

公开(公告)日：2018-01-11

申请号：PCT/US2017/040672

申请日：2017-07-05

Applicant: POWER FINGERPRINTING INC. ,  AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C.

Inventor： AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C. ,  REED, Jeffrey H.

IPC: G06F11/00 ,  G06F11/30 ,  G06F21/00 ,  G06F21/50 ,  G06F21/55

Abstract: Some embodiments described herein include an apparatus having a processor communicatively coupled to a memory. The processor is configured to send, at a first compute device, input vectors to a second compute device. The processor is configured to receive side-channel information, from the second compute device, in response to the input vectors. The processor is then configured to compare the received side-channel information with predefined side-channel information associated with the second compute device. If the received side-channel information does not match the predefined side-channel information, the processor is configured to generate a message that the second compute device has an anomaly.

Abstract translation: 这里描述的一些实施例包括具有通信地耦合到存储器的处理器的装置。 处理器被配置为在第一计算设备处将输入向量发送到第二计算设备。 处理器被配置为响应于输入向量从第二计算设备接收边信道信息。 处理器然后被配置为将接收到的侧信道信息与与第二计算设备相关联的预定义的侧信道信息进行比较。 如果接收到的侧信道信息与预定义的侧信道信息不匹配，则处理器被配置为生成第二计算设备具有异常的消息。

公开(公告)号：WO2017096234A1

公开(公告)日：2017-06-08

申请号：PCT/US2016/064730

申请日：2016-12-02

Applicant: POWER FINGERPRINTING INC. ,  AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C.

Inventor： AGUAYO GONZALEZ, Carlos R. ,  CHEN, Steven C. ,  REED, Jeffrey H.

IPC: G01D1/00 ,  G01N22/00 ,  G01N22/02 ,  G06F11/30 ,  G07D7/02 ,  G07D7/04 ,  G08B1/08

CPC classification number: G01R23/02 ,  G01R31/31719

Abstract: Some embodiments described herein include an apparatus having a memory and a processor operatively coupled to the memory. The processor is configured to receive, in response to an excitation signal and from the power signature detector, a power signature signal associated with a target electronic device disposed within a sealed package. The processor is configured to extract a characteristic of the power signature signal and compare the characteristic of the power signature signal with a characteristic of a reference power signature signal associated with at least one reference device to determine a counterfeit status of the target electronic device. The at least one reference device is a pre-determined trusted device or a pre-determined counterfeit device. The processor is configured to send, to a communication interface, a notification signal associated with the counterfeit status of the target electronic device.

Abstract translation: 这里描述的一些实施例包括具有存储器和可操作地耦合到存储器的处理器的设备。 处理器被配置为响应于激励信号并且从功率签名检测器接收与布置在密封封装内的目标电子设备相关联的功率签名信号。 处理器被配置为提取功率签名信号的特性并且将功率签名信号的特性与与至少一个参考装置相关联的参考功率签名信号的特性进行比较以确定目标电子装置的伪造状态。 该至少一个参考设备是预定的可信设备或预定的伪造设备。 处理器被配置为向通信接口发送与目标电子设备的伪造状态相关联的通知信号。

公开(公告)号：WO2016190931A1

公开(公告)日：2016-12-01

申请号：PCT/US2016/018940

申请日：2016-02-22

Applicant: POWER FINGERPRINTING INC.

Inventor： AGUAYO GONZALEZ, Carlos R. ,  REED, Jeffrey H. ,  CHEN, Steven C.

IPC: G06F11/00

CPC classification number: G06F21/552 ,  G01R1/0408 ,  G01R21/00 ,  G01R31/2832 ,  G01R31/2886 ,  G01R31/2887 ,  G01R31/2891 ,  G01R31/2893 ,  G06F21/32 ,  G06F21/755 ,  G06F2221/034

Abstract: Some embodiments described herein include a system that collects and learns reference side-channel normal activity, process it to reveal key features, compares subsequent collected data and processed data for anomalous behavior, and reports such behavior to a management center where this information is displayed and predefine actions can be executed when anomalous behavior is observed. In some instances, a physical side channel (e.g. and indirect measure of program execution such as power consumption or electromagnetic emissions and other physical signals) can be used to assess the execution status in a processor or digital circuit using an external monitor and detect, with extreme accuracy, when an unauthorized execution has managed to disrupt the normal operation of a target system (e.g., a computer system, etc.).

Abstract translation: 本文描述的一些实施例包括收集和学习参考侧信道正常活动的系统，处理它以显示关键特征，比较后续收集的数据和用于异常行为的处理数据，并将该行为报告给显示该信息的管理中心，以及 当观察到异常行为时，可以执行预定义动作。 在某些情况下，可以使用物理侧通道（例如，程序执行的间接测量，例如功耗或电磁发射和其他物理信号）来评估使用外部监视器的处理器或数字电路中的执行状态，并使用 当非法执行已经设法破坏目标系统（例如，计算机系统等）的正常操作时的极端准确性。