检索结果-内蒙古大学图书馆

Survey of Attacks and Defenses on Edge-Deployed Neural Networks

学校读者我要写书评

暂无评论

Survey of Attacks and Defenses on Edge-Deployed Neural Netwo...

IEEE Conference on High Performance Extreme computing (HPEC)

作者： Mihailo Isakov Vijay Gadepally Karen M. Gettings Michel A. Kinsy Adaptive and Secure Computing Systems (ASCS) Laboratory Boston MA MIT Lincoln Laboratory Boston MA

Deep Neural Network (DNN) workloads are quickly moving from datacenters onto edge devices, for latency, privacy, or energy reasons. While datacenter networks can be protected using conventional cybersecurity measures, edge neural networks bring a host of new security challenges. Unlike classic IoT applications, edge neural networks are typically very compute and memory intensive, their execution is data-independent, and they are robust to noise and faults. Neural network models may be very expensive to develop, and can potentially reveal information about the private data they were trained on, requiring special care in distribution. The hidden states and outputs of the network can also be used in reconstructing user inputs, potentially violating users' privacy. Furthermore, neural networks are vulnerable to adversarial attacks, which may cause misclassifications and violate the integrity of the output. These properties add challenges when securing edge-deployed DNNs, requiring new considerations, threat models, priorities, and approaches in securely and privately deploying DNNs to the edge. In this work, we cover the landscape of attacks on, and defenses, of neural networks deployed in edge devices and provide a taxonomy of attacks and defenses targeting edge DNNs.

关键词： Neural networks Data models Data privacy Training Software Mathematical model Taxonomy

A Survey on Hardware Security Techniques Targeting Low-Power SoC Designs

学校读者我要写书评

暂无评论

A Survey on Hardware Security Techniques Targeting Low-Power...

IEEE Conference on High Performance Extreme computing (HPEC)

作者： Alan Ehret Karen Gettings Bruce R. Jordan Michel A. Kinsy Adaptive and Secure Computing Systems (ASCS) Laboratory Boston University MIT Lincoln Laboratory Lexingon United States of America

In this work, we survey hardware-based security techniques applicable to low-power system-on-chip designs. Techniques related to a system's processing elements, volatile main memory and caches, non-volatile memory and on-chip interconnects are examined. Threat models for each subsystem and technique are considered. Performance overheads and other trade-offs for each technique are discussed. Defenses with similar threat models are compared.

关键词： Random access memory Hardware System-on-chip Timing Cryptography Servers

A secure and Robust Scheme for Sharing Confidential Information in IoT systems

学校读者我要写书评

暂无评论

arXiv 2019年

作者： Bu, Lake Isakov, Mihailo Kinsy, Michel A. Adaptive and Secure Computing Systems Laboratory Department of Electrical and Computer Engineering Boston University Boston United States

In Internet of Things (IoT) systems with security demands, there is often a need to distribute sensitive information (such as encryption keys, digital signatures, or login credentials, etc.) among the devices, so that it can be retrieved for confidential purposes at a later moment. However, this information cannot be entrusted to any one device, since the failure of that device or an attack on it will jeopardize the security of the entire network. Even if the information is divided among devices, there is still the danger that an attacker can compromise a group of devices and expose the sensitive information. In this work, we design and implement a secure and robust scheme to enable the distribution of sensitive information in IoT networks. The proposed approach has two important properties: (1) it uses Threshold Secret Sharing (TSS) to split the information into pieces distributed among all devices in the system - and so the information can only be retrieved collaboratively by groups of devices;and (2) it ensures the privacy and integrity of the information, even when attackers hijack a large number of devices and use them in concert - specifically, all the compromised devices can be identified, the confidentiality of information is kept, and authenticity of the secret can be guaranteed. Copyright © 2019, The Authors. All rights reserved.

关键词： Cryptography

Sphinx: A secure architecture based on binary code diversification and execution obfuscation

学校读者我要写书评

暂无评论

arXiv 2018年

作者： Kinsy, Michel A. Kava, Donato Ehret, Alan Mark, Miguel Adaptive and Secure Computing Systems Laboratory Boston University Boston United States

Sphinx, a hardware-software co-design architecture for binary code and runtime obfuscation. The Sphinx architecture uses binary code diversification and self-reconfigurable processing elements to maintain application functionality while obfuscating the binary code and architecture states to attackers. This approach dramatically reduces an attacker's ability to exploit information gained from one deployment to attack another deployment. Our results show that the Sphinx is able to decouple the program's execution time, power and memory and I/O activities from its functionality. It is also practical in the sense that the system (both software and hardware) overheads are minimal. Copyright © 2018, The Authors. All rights reserved.

关键词： Binary codes

SAPA: Self-aware polymorphic architecture

学校读者我要写书评

暂无评论

arXiv 2018年

作者： Kinsy, Michel A. Isakov, Mihailo Ehret, Alan Kava, Donato Adaptive and Secure Computing Systems Laboratory Boston University Boston United States

In this work, we introduce a Self-Aware Polymorphic Architecture (SAPA) design approach to support emerging context-aware applications and mitigate the programming challenges caused by the ever-increasing complexity and heterogeneity of high performance computing systems. Through the SAPA design, we examined the salient software-hardware features of adaptive computing systems that allow for (1) the dynamic allocation of computing resources depending on program needs (e.g., the amount of parallelism in the program) and (2) automatic approximation to meet program and system goals (e.g., execution time budget, power constraints and computation resiliency) without the programming complexity of current multicore and many-core systems. The proposed adaptive computer architecture framework applies machine learning algorithms and control theory techniques to the application execution based on information collected about the system runtime performance trade-offs. It has heterogeneous reconfigurable cores with fast hardware-level migration capability, self-organizing memory structures and hierarchies, an adaptive application-aware network-on-chip, and a built-in hardware layer for dynamic, autonomous resource management. Our prototyped architecture performs extremely well on a large pool of applications. Copyright © 2018, The Authors. All rights reserved.

关键词： Budget control

Closnets: A priori sparse topologies for faster DNN training

学校读者我要写书评

暂无评论

arXiv 2018年

作者： Isakov, Mihailo Kinsy, Michel A. Adaptive and Secure Computing Systems Laboratory Department of Electrical and Computer Engineering Boston University Boston United States

Fully-connected layers in deep neural networks (DNN) are often the throughput and power bottleneck during training. This is due to their large size and low data reuse. Pruning dense layers can significantly reduce the size of these networks, but this approach can only be applied after training. In this work we propose a novel fully-connected layer that reduces the memory requirements of DNNs without sacrificing accuracy. We replace a dense matrix with products of sparse matrices whose topologies we pick in advance. This allows us to: (1) train significantly smaller networks without a loss in accuracy, and (2) store the network weights without having to store connection indices. We therefore achieve significant training speedups due to the smaller network size, and a reduced amount of computation per epoch. We tested several sparse layer topologies and found that Clos networks perform well due to their high path diversity, shallowness, and high model accuracy. With the ClosNets, we are able to reduce dense layer sizes by as much as an order of magnitude without hurting model accuracy. Copyright © 2018, The Authors. All rights reserved.

关键词： Topology

RASSS: A perfidy-aware protocol for designing trustworthy distributed systems

学校读者我要写书评

暂无评论

RASSS: A perfidy-aware protocol for designing trustworthy di...

IEEE International Symposium on Defect and Fault Tolerance in VLSI systems

作者： Lake Bu Hien D. Nguyen Michel A. Kinsy Adaptive and Secure Computing Systems Laboratory Boston University Boston USA

Robust adaptive secure Secret Sharing (RASSS) is a protocol for reconstructing secrets and information in distributed computing systems even in the presence of a large number of untrusted participants. Since the original Shamir's Secret Sharing scheme, there have been efforts to secure the technique against dishonest shareholders. Early on, researchers determined that the Reed-Solomon encoding property of the Shamir's share distribution equation and its decoding algorithm could tolerate cheaters up to one third of the total shareholders. However, if the number of cheaters grows beyond the error correcting capability (distance) of the Reed-Solomon codes, the reconstruction of the secret is hindered. Untrusted participants or cheaters could hide in the decoding procedure, or even frame up the honest parties. In this paper, we solve this challenge and propose a secure protocol that is no longer constrained by the limitations of the Reed-Solomon codes. As long as there are a minimum number of honest shareholders, the RASSS protocol is able to identify the cheaters and retrieve the correct secret or information in a distributed system with a probability close to 1 with less than 60% of hardware overhead. Furthermore, the adaptive nature of the protocol enables considerable hardware and timing resource savings and makes RASSS highly practical.

关键词： Protocols Cryptography Decoding Reed-Solomon codes Hardware