On Code Execution Tracking via Power Side-Channel
Association for Computing Machinery (ACM) via YouTube
Overview
Syllabus
Intro
Microcontroller Unit (MCU) Core of embedded system
Scenario 1: Key Extraction Attack
Scenario 2: Control Flow Integrity (CFI)
Code Execution Tracking
Execution tracking via Power Side-channel
Problem Formulation . Given code & power trace of MCU
Hidden Markov Model (HMM)
Overall Framework
Naïve State Definition
Basic Block as State
Unequal-length States (Cont'd) 2. Viterbl : recover the most probable state sequence
Complexity Analysis
Emission Distribution Design
Observation Symbol Design
Signal Extraction
Calibrated likelihood 1. Sample cach instruction's average likelihood during normal execution
Evaluation Setup
Abnormal Execution Tracking
Conclusion & Future Works
Taught by
ACM CCS