Publication
Security Coverage Metrics for Information Flow at the System Level
Ece Nur Demirhan Coskun; Sallar Ahmadi-Pour; Muhammad Hassan; Rolf Drechsler
In: 29th Asia and South Pacific Design Automation Conference (ASP-DAC). Asia and South Pacific Design Automation Conference (ASP-DAC-2024), January 22-25, Incheon, Korea, Republic of, 2024.
Abstract
In this paper, we introduce a novel set of security
coverage metrics for information flow at the system level. The
proposed security coverage metrics play a crucial role in assessing
the qualification and quantification of various security properties,
in addressing specific threat models, such as availability, and
in identifying potential security vulnerabilities associated with
information flow. To implement these metrics, we present SiMiT,
a tool that leverages Virtual Prototypes (VP), and Static and
Dynamic Information Flow Tracking (IFT) methodologies. We
demonstrate the applicability of the proposed security coverage
metrics through SiMiT on an open-source RISC-V VP architecture
with its peripherals. By assessing the security properties using
these metrics, we pave the way for a security-aware Completeness
Driven Development (CDD) concept and the development of secure
System-on-Chip (SoC) designs.