基于木马的方式增强RRAM计算系统的安全性
作者:
作者单位:

作者简介:

邹敏辉(1989-),男,博士,讲师,CCF专业会员,主要研究领域为存内计算,硬件安全.
孙晋(1983-),男,博士,副教授,CCF专业会员,主要研究领域为计算机体系结构,高性能计算.
周俊龙(1988-),男,博士,副教授,CCF专业会员,主要研究领域为嵌入式系统,物联网,云计算.
汪成亮(1975-),男,博士,教授,博士生导师,CCF高级会员,主要研究领域为复杂智能系统,人工智能系统.

通讯作者:

周俊龙,E-mail:jlzhou@njust.edu.cn;汪成亮,E-mail:wangcl@cqu.edu.cn

中图分类号:

TP309

基金项目:

国家自然科学基金(61672115,61802185,61872185);江苏省自然科学基金(BK20190447,BK20180470);教育部中央高校基本科研业务费专项资金(30919011233,30919011402);中国博士后科学基金(2020M680068)


Enhancing Security of RRAM Computing System Based on Trojans
Author:
Affiliation:

Fund Project:

National Natural Science Foundation of China (61672115, 61802185, 61872185); Natural Science Foundation of Jiangsu Province (BK20190447, BK20180470); Fundamental Research Funds for the Central Universities of China (30919011233, 30919011402); China Postdoctoral Science Foundation (2020M680068)

  • 摘要
  • |
  • 图/表
  • |
  • 访问统计
  • |
  • 参考文献
  • |
  • 相似文献
  • |
  • 引证文献
  • |
  • 资源附件
  • |
  • 文章评论
    摘要:

    基于新型存储器件RRAM的计算系统因为能够在内存中执行矩阵点乘向量运算而受到广泛的关注.然而,RRAM计算系统的安全性却未受到足够的重视.攻击者通过访问未授权的RRAM计算系统,进而以黑盒攻击的方式来获取存储于RRAM计算系统中的神经网络模型.以阻止此种攻击为目标,所提出的防御方法是基于良性木马,即当RRAM计算系统未授权时,系统中的木马极容易被激活,进而影响系统的输出预测准确性,从而保证系统不能正常运行;当RRAM计算系统被授权时,系统中的木马极难被误激活,从而系统能够正常运行.实验结果表明,该方法能够使未授权的RRAM计算系统的输出预测准确性降低至15%以下,并且硬件开销小于系统中RRAM硬件的4.5%.

    Abstract:

    Computing systems based on the emerging device resistive random-access memory (RRAM) have received a lot of attention due to its capability of performing matrix-vector-multiplications operations in memory. However, the security of the RRAM computing system has not been paid enough attention. An attacker can gain access to the neural network models stored in the RRAM computing system by illegally accessing an unauthorized RRAM computing system and then carrying on a black-box attack. The goal of this study is to thwart such attacks. The defense method proposed in this study is based on benign Trojan, which means that when the RRAM computing system is not authorized, the Trojan in the system are extremely easy to be activated, which in turn affects the prediction accuracy of the system's output, thus ensuring that the system is not able to operate normally; when the RRAM computing system is authorized, the Trojan in the system are extremely difficult to be activated accidently, thus enabling the system to operate normally. It is shown experimentally that the method enables the output prediction accuracy of an unauthorized RRAM computing system to be reduced to less than 15%, with a hardware overhead of less than 4.5% of the RRAM devices in the system.

    参考文献
    相似文献
    引证文献
引用本文

邹敏辉,周俊龙,孙晋,汪成亮.基于木马的方式增强RRAM计算系统的安全性.软件学报,2021,32(8):2457-2468

复制
分享
文章指标
  • 点击次数:
  • 下载次数:
  • HTML阅读次数:
  • 引用次数:
历史
  • 收稿日期:2020-07-25
  • 最后修改日期:2020-09-07
  • 录用日期:
  • 在线发布日期: 2021-02-07
  • 出版日期: 2021-08-06
您是第位访问者
版权所有:中国科学院软件研究所 京ICP备05046678号-3
地址:北京市海淀区中关村南四街4号,邮政编码:100190
电话:010-62562563 传真:010-62562533 Email:jos@iscas.ac.cn
技术支持:北京勤云科技发展有限公司

京公网安备 11040202500063号