A Secure JTAG Wrapper for SoC Testing and Debugging

IEEE Std. 1149.1, also known as the Joint Test Access Group (JTAG) standard, provides excellent controllability and observability for ICs and hence is widely used in IC testing, debugging, failure analysis, or even online chip control/monitoring. Unfortunately, it has also become a backdoor for atta...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE access Jg. 10; S. 37603 - 37612
Hauptverfasser: Lee, Kuen-Jong, Lu, Zheng-Yao, Yeh, Shih-Chun
Format: Journal Article
Sprache:Englisch
Veröffentlicht: Piscataway IEEE 2022
The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Schlagworte:
Authentication
Debugging
Encryption
Failure analysis
Generators
Hardware security
IEEE test standard security
in-field debugging
in-field testing
Integrated circuits
JTAG security
memory attack
Microprocessors
Observability (systems)
Physical unclonable function
physical unclonable function (PUF)
Registers
RISC
secure JTAG wrapper
Testing
ISSN:2169-3536, 2169-3536
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Abstract IEEE Std. 1149.1, also known as the Joint Test Access Group (JTAG) standard, provides excellent controllability and observability for ICs and hence is widely used in IC testing, debugging, failure analysis, or even online chip control/monitoring. Unfortunately, it has also become a backdoor for attackers to manipulate the ICs or grab confidential information from the ICs. One way to address this problem is to disable JTAG pins after manufacturing testing. However this countermeasure prohibits the in-filed testing and debugging capability. Other countermeasures such as authentication and encryption/decryption methods based on specific static keys have also been proposed. However, these approaches may suffer from side-channel or memory attacks that may figure out the specific keys. This paper presents an authentication-based secure JTAG wrapper with a dynamic feature to defend against the attacks mentioned above. We generate different keys for different test data dynamically. Therefore, only legal test data can be updated to the test data registers (TDRs) through JTAG. Furthermore, the attackers will get fake responses if they shift in illegal test data, which makes it extremely difficult to break our proposed method. We can also employ the physical unclonable function (PUF) to distinguish the legal test data for different chips. Experiments on a RISC-V CPU processor called SCR1 show that our proposed method can have an area overhead of only 0.49%.
AbstractList IEEE Std. 1149.1, also known as the Joint Test Access Group (JTAG) standard, provides excellent controllability and observability for ICs and hence is widely used in IC testing, debugging, failure analysis, or even online chip control/monitoring. Unfortunately, it has also become a backdoor for attackers to manipulate the ICs or grab confidential information from the ICs. One way to address this problem is to disable JTAG pins after manufacturing testing. However this countermeasure prohibits the in-filed testing and debugging capability. Other countermeasures such as authentication and encryption/decryption methods based on specific static keys have also been proposed. However, these approaches may suffer from side-channel or memory attacks that may figure out the specific keys. This paper presents an authentication-based secure JTAG wrapper with a dynamic feature to defend against the attacks mentioned above. We generate different keys for different test data dynamically. Therefore, only legal test data can be updated to the test data registers (TDRs) through JTAG. Furthermore, the attackers will get fake responses if they shift in illegal test data, which makes it extremely difficult to break our proposed method. We can also employ the physical unclonable function (PUF) to distinguish the legal test data for different chips. Experiments on a RISC-V CPU processor called SCR1 show that our proposed method can have an area overhead of only 0.49%.
Author Yeh, Shih-Chun
Lu, Zheng-Yao
Lee, Kuen-Jong
Author_xml – sequence: 1
  givenname: Kuen-Jong
  orcidid: 0000-0002-6690-0074
  surname: Lee
  fullname: Lee, Kuen-Jong
  email: kjlee@mail.ncku.edu.tw
  organization: Department of Electrical Engineering, National Cheng Kung University, Tainan, Taiwan
– sequence: 2
  givenname: Zheng-Yao
  surname: Lu
  fullname: Lu, Zheng-Yao
  organization: Department of Silicon Product Development, MediaTek Inc., Hsinchu, Taiwan
– sequence: 3
  givenname: Shih-Chun
  orcidid: 0000-0001-9608-6547
  surname: Yeh
  fullname: Yeh, Shih-Chun
  organization: Department of Electrical Engineering, National Cheng Kung University, Tainan, Taiwan
BookMark eNqFUEtLAzEQDqLgq7-glwXPrcnmfVzWN4KHVjyGNJksW-qmZrcH_72pW0S8ODDMg_m-mfnO0XEXO0BoSvCcEKyvq7q-XSzmJS7LOSWCSVIeobOSCD2jnIrjX_kpmvT9GmdTucXlGaJVsQC3S1A8Lav74i3Z7RZSEWIqFrEultAPbdcUtvPFDax2TZOrS3QS7KaHySFeoNe722X9MHt-uX-sq-eZo1QNsyDsSgcJK009YYwBlDI4aiW3uCQePKZYKK6Z05K7wL3iIKVagVIgMWP0Aj2OvD7atdmm9t2mTxNta74bMTXGpqF1GzDcB-e8sFRIzYTSinsrJMues6B85roaubYpfuzyV2Ydd6nL55tSMC01JpLnKTpOuRT7PkH42Uqw2YttRrHNXmxzEDuj9B-Uawc7tLEbkm03_2CnI7YFgJ9tWjKNhaBfQt6Lsw
CODEN IAECCG
CitedBy_id crossref_primary_10_1109_ACCESS_2022_3207151
Cites_doi 10.1145/1506409.1506429
10.1145/1146909.1146916
10.1016/b978-0-12-370597-6.x5000-8
10.1109/TCAD.2015.2398423
10.1109/FDTC.2012.15
10.1109/MDAT.2019.2899064
10.1109/JPROC.2014.2320516
10.1109/HST.2010.5513119
10.1016/j.diin.2016.01.009
10.1109/TVLSI.2010.2089071
10.1109/HPCA.2017.10
10.1109/DDECS.2019.8724654
10.1007/978-3-319-18302-2_11
10.1007/978-3-642-33027-8_2
10.1109/TCAD.2018.2802866
10.1109/MDAT.2020.3013727
10.1587/transfun.E92.A.3229
10.1109/SoutheastCon42311.2019.9020371
10.1109/ARES.2013.52
10.1109/ASQED.2009.5206245
10.1007/s10836-010-5170-y
10.1007/s10836-013-5369-9
10.1109/IOLTS.2007.42
10.1109/IEEESTD.2013.6515989
10.1109/TETC.2020.3021820
10.1109/DATE.2012.6176618
10.1109/TETC.2014.2304492
10.1109/TCAD.2005.862745
ContentType Journal Article
Copyright Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2022
Copyright_xml – notice: Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2022
DBID 97E
ESBDL
RIA
RIE
AAYXX
CITATION
7SC
7SP
7SR
8BQ
8FD
JG9
JQ2
L7M
L~C
L~D
DOA
DOI 10.1109/ACCESS.2022.3164712
DatabaseName IEEE All-Society Periodicals Package (ASPP) 2005-present
IEEE Open Access Journals
IEEE All-Society Periodicals Package (ASPP) 1998-Present
IEEE Electronic Library (IEL)
CrossRef
Computer and Information Systems Abstracts
Electronics & Communications Abstracts
Engineered Materials Abstracts
METADEX
Technology Research Database
Materials Research Database
ProQuest Computer Science Collection
Advanced Technologies Database with Aerospace
Computer and Information Systems Abstracts – Academic
Computer and Information Systems Abstracts Professional
DOAJ Directory of Open Access Journals
DatabaseTitle CrossRef
Materials Research Database
Engineered Materials Abstracts
Technology Research Database
Computer and Information Systems Abstracts – Academic
Electronics & Communications Abstracts
ProQuest Computer Science Collection
Computer and Information Systems Abstracts
Advanced Technologies Database with Aerospace
METADEX
Computer and Information Systems Abstracts Professional
DatabaseTitleList Materials Research Database
Database_xml – sequence: 1
  dbid: DOA
  name: DOAJ Directory of Open Access Journals
  url: https://www.doaj.org/
  sourceTypes: Open Website
– sequence: 2
  dbid: RIE
  name: IEEE Electronic Library (IEL)
  url: https://ieeexplore.ieee.org/
  sourceTypes: Publisher
DeliveryMethod fulltext_linktorsrc
Discipline Engineering
EISSN 2169-3536
EndPage 37612
ExternalDocumentID oai_doaj_org_article_5dfccd6a3679468985da674a6785df8d
10_1109_ACCESS_2022_3164712
9749066
Genre orig-research
GrantInformation_xml – fundername: Ministry of Science and Technology of Taiwan
  funderid: 10.13039/501100004663
– fundername: Qualcomm Inc., through the Taiwan University Research Collaboration Project
  funderid: 10.13039/100005144
GroupedDBID 0R~
4.4
5VS
6IK
97E
AAJGR
ABAZT
ABVLG
ACGFS
ADBBV
AGSQL
ALMA_UNASSIGNED_HOLDINGS
BCNDV
BEFXN
BFFAM
BGNUA
BKEBE
BPEOZ
EBS
EJD
ESBDL
GROUPED_DOAJ
IPLJI
JAVBF
KQ8
M43
M~E
O9-
OCL
OK1
RIA
RIE
RNS
AAYXX
CITATION
7SC
7SP
7SR
8BQ
8FD
JG9
JQ2
L7M
L~C
L~D
ID FETCH-LOGICAL-c338t-f6ab9f7eb93d1444ee27fc3a75a021ded03068594c975cf5d85e778be88e70443
IEDL.DBID RIE
ISICitedReferencesCount 3
ISICitedReferencesURI http://www.webofscience.com/api/gateway?GWVersion=2&SrcApp=Summon&SrcAuth=ProQuest&DestLinkType=CitingArticles&DestApp=WOS_CPL&KeyUT=000782410300001&url=https%3A%2F%2Fcvtisr.summon.serialssolutions.com%2F%23%21%2Fsearch%3Fho%3Df%26include.ft.matches%3Dt%26l%3Dnull%26q%3D
ISSN 2169-3536
IngestDate Fri Oct 03 12:52:57 EDT 2025
Mon Jun 30 03:25:06 EDT 2025
Tue Nov 18 20:56:27 EST 2025
Sat Nov 29 06:32:01 EST 2025
Wed Aug 27 02:40:46 EDT 2025
IsDoiOpenAccess true
IsOpenAccess true
IsPeerReviewed true
IsScholarly true
Language English
License https://creativecommons.org/licenses/by/4.0/legalcode
LinkModel DirectLink
MergedId FETCHMERGED-LOGICAL-c338t-f6ab9f7eb93d1444ee27fc3a75a021ded03068594c975cf5d85e778be88e70443
Notes ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
ORCID 0000-0001-9608-6547
0000-0002-6690-0074
OpenAccessLink https://ieeexplore.ieee.org/document/9749066
PQID 2649790175
PQPubID 4845423
PageCount 10
ParticipantIDs crossref_primary_10_1109_ACCESS_2022_3164712
proquest_journals_2649790175
ieee_primary_9749066
crossref_citationtrail_10_1109_ACCESS_2022_3164712
doaj_primary_oai_doaj_org_article_5dfccd6a3679468985da674a6785df8d
PublicationCentury 2000
PublicationDate 20220000
2022-00-00
20220101
2022-01-01
PublicationDateYYYYMMDD 2022-01-01
PublicationDate_xml – year: 2022
  text: 20220000
PublicationDecade 2020
PublicationPlace Piscataway
PublicationPlace_xml – name: Piscataway
PublicationTitle IEEE access
PublicationTitleAbbrev Access
PublicationYear 2022
Publisher IEEE
The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Publisher_xml – name: IEEE
– name: The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
References ref13
ref12
ref15
ref14
ref31
ref30
ref11
ref2
ref1
ref17
ref16
ref19
ref18
ref24
ref23
ref26
ref25
ref20
(ref32) 2022
ref22
ref21
(ref10) 2016
ref28
ref29
ref8
ref7
DeBusschere (ref9) 2012
ref4
ref3
ref6
ref5
Tehranipoor (ref27) 2011
References_xml – ident: ref25
  doi: 10.1145/1506409.1506429
– ident: ref12
  doi: 10.1145/1146909.1146916
– ident: ref1
  doi: 10.1016/b978-0-12-370597-6.x5000-8
– ident: ref5
  doi: 10.1109/TCAD.2015.2398423
– ident: ref28
  doi: 10.1109/FDTC.2012.15
– ident: ref4
  doi: 10.1109/MDAT.2019.2899064
– ident: ref19
  doi: 10.1109/JPROC.2014.2320516
– ident: ref14
  doi: 10.1109/HST.2010.5513119
– year: 2012
  ident: ref9
  article-title: Modern game console exploitation
– ident: ref23
  doi: 10.1016/j.diin.2016.01.009
– ident: ref13
  doi: 10.1109/TVLSI.2010.2089071
– ident: ref24
  doi: 10.1109/HPCA.2017.10
– volume-title: Syntacore. SCR1
  year: 2022
  ident: ref32
– ident: ref18
  doi: 10.1109/DDECS.2019.8724654
– ident: ref31
  doi: 10.1007/978-3-319-18302-2_11
– ident: ref8
  doi: 10.1007/978-3-642-33027-8_2
– ident: ref11
  doi: 10.1109/TCAD.2018.2802866
– ident: ref21
  doi: 10.1109/MDAT.2020.3013727
– ident: ref6
  doi: 10.1587/transfun.E92.A.3229
– ident: ref30
  doi: 10.1109/SoutheastCon42311.2019.9020371
– volume-title: JTAG Explained (Finally!): Why ‘IoT’ Software Security Engineers, and Manufacturers Should Care
  year: 2016
  ident: ref10
– ident: ref26
  doi: 10.1109/ARES.2013.52
– ident: ref22
  doi: 10.1109/ASQED.2009.5206245
– ident: ref16
  doi: 10.1007/s10836-010-5170-y
– ident: ref17
  doi: 10.1007/s10836-013-5369-9
– ident: ref29
  doi: 10.1109/IOLTS.2007.42
– ident: ref2
  doi: 10.1109/IEEESTD.2013.6515989
– ident: ref20
  doi: 10.1109/TETC.2020.3021820
– ident: ref15
  doi: 10.1109/DATE.2012.6176618
– ident: ref3
  doi: 10.1109/TETC.2014.2304492
– volume-title: Introduction to Hardware Security and Trust
  year: 2011
  ident: ref27
– ident: ref7
  doi: 10.1109/TCAD.2005.862745
SSID ssj0000816957
Score 2.2494698
Snippet IEEE Std. 1149.1, also known as the Joint Test Access Group (JTAG) standard, provides excellent controllability and observability for ICs and hence is widely...
SourceID doaj
proquest
crossref
ieee
SourceType Open Website
Aggregation Database
Enrichment Source
Index Database
Publisher
StartPage 37603
SubjectTerms Authentication
Debugging
Encryption
Failure analysis
Generators
Hardware security
IEEE test standard security
in-field debugging
in-field testing
Integrated circuits
JTAG security
memory attack
Microprocessors
Observability (systems)
Physical unclonable function
physical unclonable function (PUF)
Registers
RISC
secure JTAG wrapper
Testing
SummonAdditionalLinks – databaseName: DOAJ Directory of Open Access Journals
  dbid: DOA
  link: http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwrV1LS8QwEA4iHvQgPnF9kYNHi92m6WSO6-IDDyK4oreQ5iGC1GV39fc7SeuyIujFQ6GUtE2-SWbmS8s3jJ30nQgWQvzCWmBW1nU_UxXajOZLHVRe5wJdKjYBt7fq6QnvFkp9xX_CWnngFrgz6YK1rjKiilLoCpV0poKSDjoLykXvmwMukKnkg1W_QgmdzFA_x7PBcEgjIkJYFMRTK_LJxbdQlBT7uxIrP_xyCjaXG2y9yxL5oO3dJlvyzRZbW9AO3GZiwNNeuec3o8EVf5yY8dhPOOWg_P5tyEdRPaN55qZxnHzKe9xYft5hD5cXo-F11lVAyCxRx1kWKlNjAF-jcMR8Su8LCFYYkIZis_MuZvxKYmkRpA3SKekBVO2V8pCXpdhly81b4_cYD5aog6pcAWBKCwpLpOglciNcWsk9VnyBoW0nDx6rVLzqRBNy1C2COiKoOwR77HR-07hVx_i9-XlEed40SlunC2Rw3Rlc_2XwHtuONpo_hAgRUt7UY4dfNtPdMpxqyvYQKOMBuf8frz5gq3E47Q7MIVueTd79EVuxH7OX6eQ4zcBPOzHY5A
  priority: 102
  providerName: Directory of Open Access Journals
Title A Secure JTAG Wrapper for SoC Testing and Debugging
URI https://ieeexplore.ieee.org/document/9749066
https://www.proquest.com/docview/2649790175
https://doaj.org/article/5dfccd6a3679468985da674a6785df8d
Volume 10
WOSCitedRecordID wos000782410300001&url=https%3A%2F%2Fcvtisr.summon.serialssolutions.com%2F%23%21%2Fsearch%3Fho%3Df%26include.ft.matches%3Dt%26l%3Dnull%26q%3D
hasFullText 1
inHoldings 1
isFullTextHit
isPrint
journalDatabaseRights – providerCode: PRVAON
  databaseName: DOAJ Directory of Open Access Journals
  customDbUrl:
  eissn: 2169-3536
  dateEnd: 99991231
  omitProxy: false
  ssIdentifier: ssj0000816957
  issn: 2169-3536
  databaseCode: DOA
  dateStart: 20130101
  isFulltext: true
  titleUrlDefault: https://www.doaj.org/
  providerName: Directory of Open Access Journals
– providerCode: PRVHPJ
  databaseName: ROAD: Directory of Open Access Scholarly Resources
  customDbUrl:
  eissn: 2169-3536
  dateEnd: 99991231
  omitProxy: false
  ssIdentifier: ssj0000816957
  issn: 2169-3536
  databaseCode: M~E
  dateStart: 20130101
  isFulltext: true
  titleUrlDefault: https://road.issn.org
  providerName: ISSN International Centre
link http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwlV1NT9wwEB0B4tAeSimtui1FPnAkkI3jjH1cVtCqUhFSF8HNcvyBKlXZ1bLbI7-dsWMiEFWlHhJZkR05M7Zn3jh-A3A4djxYDHGHtVJF3bbjQjbKFjRe2iDLtuTKpWQTeHEhb27U5QYcDWdhvPfp5zN_HItpL9_N7TqGyk7I91VkIjdhE7Hpz2oN8ZSYQEIJzMRC41KdTKZT-gaCgFVFyLShVbh6ZnwSR39OqvJiJU7m5Xzn_zr2Ft5kN5JNer3vwobv3sHrJ-SCe8AnLAXTPfs-m3xl10uzWPglIyeV_ZxP2SzSa3S3zHSO0aKzjpHn2_dwdX42m34rcoqEwhK2XBWhMa0K6FvFHUGj2vsKg-UGhSHj7byLkEAKVVuFwgbhpPCIsvVSeizrmn-ArW7e-Y_AgiVsIRtXIZraolS1IvPGS8NdmuojqB5lp23mD49pLH7rhCNKpXuB6yhwnQU-gqOh0aKnz_h39dOolKFq5L5OD0jaOk8lLVyw1jWGN5EcXyopnGmwpotKQboR7EUNDS_JyhnB_qOKdZ6nd5rcQYXkEqH49PdWn-FV7GAfdNmHrdVy7b_Atv2z-nW3PEgInu4_7s8O0nB8ANx619U
linkProvider IEEE
linkToHtml http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwlV1LTxsxEB7xkoBDH0BFKKU-cGRhs16v7WMa8SyNkJoKbpbXjwip2kQh4fczdsyqqAiJw0rWyl7ZM7ZnvvH6G4DDrqXecB9OWAuZlXXdzUQlTYbzpfYir3MqbUw2wQcDcXcnb5bgqL0L45yLP5-541CMZ_l2bOYhVHaCvq9EE7kMqyFzVrqt1UZUQgoJyXiiFurm8qTX7-MoEAQWBWLTCvfh4oX5iSz9Ka3Kf3txNDBnH9_XtU_wITmSpLfQ_GdYcs0WbP5DL7gNtEdiON2Rq2HvnNxO9WTipgTdVPJ73CfDQLDRjIhuLMFtZx5iz6Md-HN2OuxfZClJQmYQXc4yX-laeu5qSS2Co9K5gntDNWcazbd1NoACwWRpJGfGMyuY41zUTgjH87KkX2ClGTduF4g3iC5EZQvOdWm4kKVEA0dzTW1c7B0onmWnTGIQD4ks_qqIJHKpFgJXQeAqCbwDR22jyYJA4-3qP4JS2qqB_Tq-QGmrtJgUs94YW2laBXp8IQWzuuIlPljywnZgO2io_UhSTgf2n1Ws0kp9UOgQSo5OEWd7r7f6DusXw1_X6vpy8PMrbITOLkIw-7Aym87dN1gzj7P7h-lBnI5PGZPY-A
openUrl ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=A+Secure+JTAG+Wrapper+for+SoC+Testing+and+Debugging&rft.jtitle=IEEE+access&rft.au=Lee%2C+Kuen-Jong&rft.au=Lu%2C+Zheng-Yao&rft.au=Yeh%2C+Shih-Chun&rft.date=2022&rft.pub=IEEE&rft.eissn=2169-3536&rft.volume=10&rft.spage=37603&rft.epage=37612&rft_id=info:doi/10.1109%2FACCESS.2022.3164712&rft.externalDocID=9749066
thumbnail_l http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/lc.gif&issn=2169-3536&client=summon
thumbnail_m http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/mc.gif&issn=2169-3536&client=summon
thumbnail_s http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/sc.gif&issn=2169-3536&client=summon