Today's mobile devices contain densely packaged system-on-chips (SoCs) with multi-core, high-frequency CPUs and complex pipelines. In parallel, sophisticated SoC-assisted security mechanisms have become commonplace for protecting device data, such as trusted execution environments, full-disk and file-based encryption. Both advancements have dramatically complicated the use of conventional physical attacks, requiring the development of specialised attacks. In this survey, we consolidate recent developments in physical fault injections and side-channel attacks on modern mobile devices. In total, we comprehensively survey over 50 fault injection and side-channel attack papers published between 2009-2021. We evaluate the prevailing methods, compare existing attacks using a common set of criteria, identify several challenges and shortcomings, and suggest future directions of research.
翻译:今天的移动设备包含密集包装的芯片系统(SoCs),有多芯、高频CPU和复杂的管道。与此同时,先进的 SoC辅助安全机制已经成为保护设备数据的普遍场所,例如信任的执行环境、全盘和基于文件的加密。这两个进步极大地增加了使用常规人身攻击的难度,需要专门攻击的开发。在这次调查中,我们综合了身体过错注射和对现代移动装置的侧道攻击的最新动态。我们总共全面调查了2009至2021年间公布的50多份过失注射和侧道攻击文件。我们评估了现行方法,用一套共同的标准比较了现有的攻击,找出了一些挑战和缺点,并提出了未来的研究方向。