A whole range of attacks becomes possible when adversaries gain physical access to computing systems that process or contain sensitive data. Examples include side-channel analysis, bus probing, device cloning, or implanting hardware Trojans. Defending against these kinds of attacks is considered a challenging endeavor, requiring anti-tamper solutions to monitor the physical environment of the system. Current solutions range from simple switches, which detect if a case is opened, to meshes of conducting material that provide more fine-grained detection of integrity violations. However, these solutions suffer from an intricate trade-off between physical security on the one side and reliability, cost, and difficulty to manufacture on the other. In this work, we demonstrate that radio wave propagation in an enclosed system of complex geometry is sensitive against adversarial physical manipulation. We present an anti-tamper radio (ATR) solution as a method for tamper detection, which combines high detection sensitivity and reliability with ease-of-use. ATR constantly monitors the wireless signal propagation behavior within the boundaries of a metal case. Tamper attempts such as insertion of foreign objects, will alter the observed radio signal response, subsequently raising an alarm. The ATR principle is applicable in many computing systems that require physical security such as servers, ATMs, and smart meters. As a case study, we use 19" servers and thoroughly investigate capabilities and limits of the ATR. Using a custom-built automated probing station, we simulate probing attacks by inserting needles with high precision into protected environments. Our experimental results show that our ATR implementation can detect 16 mm insertions of needles of diameter as low as 0.1 mm under ideal conditions. In the more realistic environment of a running 19" server, we demonstrate reliable [...]
翻译:当对手实际进入处理或含有敏感数据的计算机系统时,就有可能发生一整系列的攻击。例子包括侧道分析、公共汽车探测、设备克隆、或安装硬件Trojans。 防范这类攻击被认为是一项具有挑战性的工作,需要防爆器解决方案来监测系统的物理环境。 目前的解决办法包括简单的开关,如果案件打开,可以检测,进行更精细检测违反诚信行为的材料的模件。然而,这些解决办法则由于一方的实物安全与另一方的可靠性、成本和制造困难之间的复杂权衡而受到影响。在这项工作中,我们证明在一个封闭的复杂测地系统中的无线电波传播对对抗敌对性物理操纵是敏感的。我们提出一个防爆无线电(ATR)解决方案,作为篡改检测方法,如果案件打开的话,它就会检测到高的敏感度和可靠性。ATR不断监测一个金属案件边界内的无线信号传播行为。在插入外部物体时,将改变观察到的无线电信号反应,随后将提高一个智能的准确性机路路数据服务器的运行能力。ATR原则要求我们使用一个可应用的高级的精确的自动测算。A-