Automatic ILP-based firewall insertion for secure application-specific networks-on-chip

Yong Hu, Daniel Müller-Gritschneder, Martha Johanna Sepulveda, Guy Gogniat, Ulf Schlichtmann

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

23 Scopus citations

Abstract

Next to performance, it becomes increasingly important that Networks-on-Chip (NoCs) also provide security features such as access control, authentication and availability. They are usually implemented by firewalls at the network interfaces (NIs) of the processing elements (PEs). This paper provides a more efficient way to integrate these security requirements into application-specific NoCs by inserting firewalls also between NoC routers. This approach helps to reduce the communication overhead required for the security information in the packet headers, which can consume 3% to 9% of the total communication bandwidth. It is challenging to manually find the optimal firewall configuration because an application-specific NoC has an irregular topology, which is customized for certain known application, e.g. a smartphone chip. Thus, we show how to automatically solve this problem by formulating it as an Integer Linear Programming (ILP) problem. The solution results in firewall positions such that the communication overhead is minimized and all given security requirements are satisfied. Experiments are performed on two industrial system specifications. Compared to the solution with the firewalls at the NIs, communication overhead is reduced by up to 63%. The optimization only takes a few seconds for a standard ILP solver.

Original languageEnglish
Title of host publicationProceedings - 2015 9th International Workshop on Interconnection Network Architectures
Subtitle of host publicationOn-Chip, Multi-Chip, INA-OCMC 2015
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages9-12
Number of pages4
ISBN (Electronic)9781479918706
DOIs
StatePublished - 27 Feb 2015
Event2015 9th International Workshop on Interconnection Network Architectures: On-Chip, Multi-Chip, INA-OCMC 2015 - Amsterdam, Netherlands
Duration: 19 Jan 2015 → …

Publication series

NameProceedings - 2015 9th International Workshop on Interconnection Network Architectures: On-Chip, Multi-Chip, INA-OCMC 2015

Conference

Conference2015 9th International Workshop on Interconnection Network Architectures: On-Chip, Multi-Chip, INA-OCMC 2015
Country/TerritoryNetherlands
CityAmsterdam
Period19/01/15 → …

Keywords

  • Application-specific NoC
  • Firewall
  • Security

Fingerprint

Dive into the research topics of 'Automatic ILP-based firewall insertion for secure application-specific networks-on-chip'. Together they form a unique fingerprint.

Cite this