CAD-Base: An Attack Vector into the Electronics Supply Chain. Basu, K., Saeed, S. M., Pilato, C., Ashraf, M., Nabeel, M. T., Chakrabarty, K., & Karri, R. ACM Transactions on Design Automation of Electronic Systems, 24(4):38:1–38:30, April, 2019.
CAD-Base: An Attack Vector into the Electronics Supply Chain [link]Paper  doi  abstract   bibtex   
Fabless semiconductor companies design system-on-chips (SoC) by using third-party intellectual property (IP) cores and fabricate them in offshore, potentially untrustworthy foundries. Owing to the globally distributed electronics supply chain, security has emerged as a serious concern. In this article, we explore electronics computer-aided design (CAD) software as a threat vector that can be exploited to introduce vulnerabilities into the SoC. We show that all electronics CAD tools—high-level synthesis, logic synthesis, physical design, verification, test, and post-silicon validation—are potential threat vectors to different degrees. We have demonstrated CAD-based attacks on several benchmarks, including the commercial ARM Cortex M0 processor [1].
@article{basu_cad-base_2019,
	title = {{CAD}-{Base}: {An} {Attack} {Vector} into the {Electronics} {Supply} {Chain}},
	volume = {24},
	issn = {1084-4309},
	shorttitle = {{CAD}-{Base}},
	url = {https://doi.org/10.1145/3315574},
	doi = {10.1145/3315574},
	abstract = {Fabless semiconductor companies design system-on-chips (SoC) by using third-party intellectual property (IP) cores and fabricate them in offshore, potentially untrustworthy foundries. Owing to the globally distributed electronics supply chain, security has emerged as a serious concern. In this article, we explore electronics computer-aided design (CAD) software as a threat vector that can be exploited to introduce vulnerabilities into the SoC. We show that all electronics CAD tools—high-level synthesis, logic synthesis, physical design, verification, test, and post-silicon validation—are potential threat vectors to different degrees. We have demonstrated CAD-based attacks on several benchmarks, including the commercial ARM Cortex M0 processor [1].},
	number = {4},
	urldate = {2021-05-03},
	journal = {ACM Transactions on Design Automation of Electronic Systems},
	author = {Basu, Kanad and Saeed, Samah Mohamed and Pilato, Christian and Ashraf, Mohammed and Nabeel, Mohammed Thari and Chakrabarty, Krishnendu and Karri, Ramesh},
	month = apr,
	year = {2019},
	keywords = {Electronic design automation, computer-aided design, hardware security},
	pages = {38:1--38:30},
}

Downloads: 0