Small faults grow up - Verification of error masking robustness in arithmetically encoded programs

Anja Felicitas Karl; Robert Schilling; Roderick Bloem; Stefan Mangard

doi:10.1007/978-3-030-11245-5_9

Small faults grow up - Verification of error masking robustness in arithmetically encoded programs

Anja Felicitas Karl, Robert Schilling, Roderick Bloem, Stefan Mangard

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

The increasing prevalence of soft errors and security concerns due to recent attacks like rowhammer have caused increased interest in the robustness of software against bit flips. Arithmetic codes can be used as a protection mechanism to detect small errors injected in the program’s data. However, the accumulation of propagated errors can increase the number of bits flips in a variable - possibly up to an undetectable level. The effect of error masking can occur: An error weight exceeds the limitations of the code and a new, valid, but incorrect code word is formed. Masked errors are undetectable, and it is crucial to check variables for bit flips before error masking can occur. In this paper, we develop a theory of provably robust arithmetic programs. We focus on the interaction of bit flips that can happen at different locations in the program and the propagation and possible masking of errors. We show how this interaction can be formally modeled and how off-the-shelf model checkers can be used to show correctness. We evaluate our approach based on prominent and security relevant algorithms and show that even multiple faults injected at any time into any variables can be handled by our method.

Original language	English
Title of host publication	Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings
Editors	Ruzica Piskac, Constantin Enea
Publisher	Springer
Pages	183-204
Number of pages	22
ISBN (Electronic)	978-3-030-11245-5
ISBN (Print)	978-3-030-11244-8
DOIs	https://doi.org/10.1007/978-3-030-11245-5_9
Publication status	Published - 2019
Event	2019 International Conference on Verification, Model Checking, and Abstract Interpretation - Cascais, Portugal Duration: 13 Jan 2019 → 15 Jan 2019

Publication series

Name	Lecture Notes in Computer Science
Volume	11388

Conference

Conference	2019 International Conference on Verification, Model Checking, and Abstract Interpretation
Abbreviated title	VMCAI 2019
Country/Territory	Portugal
City	Cascais
Period	13/01/19 → 15/01/19

Keywords

Arithmetic codes
Error detection codes
Error masking
Fault injection
Formal verification

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-030-11245-5_9

vmcai2019Accepted author manuscript, 459 KB

Cite this

Karl, A. F., Schilling, R., Bloem, R., & Mangard, S. (2019). Small faults grow up - Verification of error masking robustness in arithmetically encoded programs. In R. Piskac, & C. Enea (Eds.), Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings (pp. 183-204). (Lecture Notes in Computer Science; Vol. 11388). Springer. https://doi.org/10.1007/978-3-030-11245-5_9

Small faults grow up - Verification of error masking robustness in arithmetically encoded programs. / Karl, Anja Felicitas; Schilling, Robert; Bloem, Roderick et al.
Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings. ed. / Ruzica Piskac; Constantin Enea. Springer, 2019. p. 183-204 (Lecture Notes in Computer Science; Vol. 11388).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Karl, AF, Schilling, R, Bloem, R & Mangard, S 2019, Small faults grow up - Verification of error masking robustness in arithmetically encoded programs. in R Piskac & C Enea (eds), Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings. Lecture Notes in Computer Science, vol. 11388, Springer, pp. 183-204, 2019 International Conference on Verification, Model Checking, and Abstract Interpretation , Cascais, Portugal, 13/01/19. https://doi.org/10.1007/978-3-030-11245-5_9

Karl AF, Schilling R, Bloem R , Mangard S. Small faults grow up - Verification of error masking robustness in arithmetically encoded programs. In Piskac R, Enea C, editors, Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings. Springer. 2019. p. 183-204. (Lecture Notes in Computer Science). doi: 10.1007/978-3-030-11245-5_9

Karl, Anja Felicitas ; Schilling, Robert ; Bloem, Roderick et al. / Small faults grow up - Verification of error masking robustness in arithmetically encoded programs. Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings. editor / Ruzica Piskac ; Constantin Enea. Springer, 2019. pp. 183-204 (Lecture Notes in Computer Science).

@inproceedings{12bf9ac1060f48909ee787683dc0aed3,

title = "Small faults grow up - Verification of error masking robustness in arithmetically encoded programs",

abstract = "The increasing prevalence of soft errors and security concerns due to recent attacks like rowhammer have caused increased interest in the robustness of software against bit flips. Arithmetic codes can be used as a protection mechanism to detect small errors injected in the program{\textquoteright}s data. However, the accumulation of propagated errors can increase the number of bits flips in a variable - possibly up to an undetectable level. The effect of error masking can occur: An error weight exceeds the limitations of the code and a new, valid, but incorrect code word is formed. Masked errors are undetectable, and it is crucial to check variables for bit flips before error masking can occur. In this paper, we develop a theory of provably robust arithmetic programs. We focus on the interaction of bit flips that can happen at different locations in the program and the propagation and possible masking of errors. We show how this interaction can be formally modeled and how off-the-shelf model checkers can be used to show correctness. We evaluate our approach based on prominent and security relevant algorithms and show that even multiple faults injected at any time into any variables can be handled by our method.",

keywords = "Arithmetic codes, Error detection codes, Error masking, Fault injection, Formal verification",

author = "Karl, {Anja Felicitas} and Robert Schilling and Roderick Bloem and Stefan Mangard",

year = "2019",

doi = "10.1007/978-3-030-11245-5_9",

language = "English",

isbn = "978-3-030-11244-8",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "183--204",

editor = "Ruzica Piskac and Constantin Enea",

booktitle = "Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings",

note = "2019 International Conference on Verification, Model Checking, and Abstract Interpretation , VMCAI 2019 ; Conference date: 13-01-2019 Through 15-01-2019",

}

TY - GEN

T1 - Small faults grow up - Verification of error masking robustness in arithmetically encoded programs

AU - Karl, Anja Felicitas

AU - Schilling, Robert

AU - Bloem, Roderick

AU - Mangard, Stefan

PY - 2019

Y1 - 2019

N2 - The increasing prevalence of soft errors and security concerns due to recent attacks like rowhammer have caused increased interest in the robustness of software against bit flips. Arithmetic codes can be used as a protection mechanism to detect small errors injected in the program’s data. However, the accumulation of propagated errors can increase the number of bits flips in a variable - possibly up to an undetectable level. The effect of error masking can occur: An error weight exceeds the limitations of the code and a new, valid, but incorrect code word is formed. Masked errors are undetectable, and it is crucial to check variables for bit flips before error masking can occur. In this paper, we develop a theory of provably robust arithmetic programs. We focus on the interaction of bit flips that can happen at different locations in the program and the propagation and possible masking of errors. We show how this interaction can be formally modeled and how off-the-shelf model checkers can be used to show correctness. We evaluate our approach based on prominent and security relevant algorithms and show that even multiple faults injected at any time into any variables can be handled by our method.

AB - The increasing prevalence of soft errors and security concerns due to recent attacks like rowhammer have caused increased interest in the robustness of software against bit flips. Arithmetic codes can be used as a protection mechanism to detect small errors injected in the program’s data. However, the accumulation of propagated errors can increase the number of bits flips in a variable - possibly up to an undetectable level. The effect of error masking can occur: An error weight exceeds the limitations of the code and a new, valid, but incorrect code word is formed. Masked errors are undetectable, and it is crucial to check variables for bit flips before error masking can occur. In this paper, we develop a theory of provably robust arithmetic programs. We focus on the interaction of bit flips that can happen at different locations in the program and the propagation and possible masking of errors. We show how this interaction can be formally modeled and how off-the-shelf model checkers can be used to show correctness. We evaluate our approach based on prominent and security relevant algorithms and show that even multiple faults injected at any time into any variables can be handled by our method.

KW - Arithmetic codes

KW - Error detection codes

KW - Error masking

KW - Fault injection

KW - Formal verification

UR - http://www.scopus.com/inward/record.url?scp=85061102985&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-11245-5_9

DO - 10.1007/978-3-030-11245-5_9

M3 - Conference paper

SN - 978-3-030-11244-8

T3 - Lecture Notes in Computer Science

SP - 183

EP - 204

BT - Verification, Model Checking, and Abstract Interpretation - 20th International Conference, VMCAI 2019, Proceedings

A2 - Piskac, Ruzica

A2 - Enea, Constantin

PB - Springer

T2 - 2019 International Conference on Verification, Model Checking, and Abstract Interpretation

Y2 - 13 January 2019 through 15 January 2019

ER -

Small faults grow up - Verification of error masking robustness in arithmetically encoded programs

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Data Security - KC - KD-07 Scalable Knowledge Discovery Components

EU - SOPHIA - Securing Software against Physical Attacks

Cite this

Small faults grow up - Verification of error masking robustness in arithmetically encoded programs

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Projects

Data Security - KC - KD-07 Scalable Knowledge Discovery Components

EU - SOPHIA - Securing Software against Physical Attacks

Cite this