Today's mobile devices contain densely packaged system-on-chips (SoCs) with multi-core, high-frequency CPUs and complex pipelines. In parallel, sophisticated SoC-assisted security mechanisms have become commonplace for protecting device data, such as trusted execution environments (TEEs), full-disk and file-based encryption. Both advancements have dramatically complicated the use of conventional physical attacks, which has required the development of specialised attacks. In this survey, we consolidate recent developments in physical fault injections (FIAs) and side-channel attacks (SCAs) on modern mobile devices. In total, we comprehensively survey over 50 fault injection and side-channel attack papers published between 2009--2021. We evaluate the prevailing methods, compare existing attacks using a common framework, identify several challenges and shortcomings, and suggest future directions of research.
翻译:今天的移动设备包含密集包装的系统对立芯(SoCs),有多芯、高频CPU和复杂的管道。同时,先进的 SoC协助的安全机制也成为保护设备数据的共同场所,例如信任的执行环境、全盘和基于文件的加密。这两个进步都使常规物理攻击的使用变得极为复杂,这需要专门攻击的开发。在这次调查中,我们整合了现代移动装置的物理过错注射(FIAs)和侧道攻击(SCAs)的最新发展。我们总共全面调查了2009-2021年间公布的50多份过失注射和侧道攻击文件。我们评估了当前使用的方法,用一个共同的框架比较了现有的攻击,找出了一些挑战和缺点,并提出了未来研究的方向。
相关内容
微信扫码咨询专知VIP会员