Skip to Main content Skip to Navigation
Theses

Analyse de vulnérabilité des systèmes embarqués face aux attaques physiques

Sébanjila Kevin Bukasa 1, 2
2 CIDRE - Confidentialité, Intégrité, Disponibilité et Répartition
CentraleSupélec, Inria Rennes – Bretagne Atlantique , IRISA-D1 - SYSTÈMES LARGE ÉCHELLE
Abstract : During this thesis, we focused on the security of mobile devices. To do this, we explored physical attacks by perturbation (fault injections) as well as by observation, both based on electromagnetic emissions. We selected two types of targets representing two categories of mobile devices. On the one hand, the microcontrollers that equip IoT devices. And on the other hand the System-on-Chip (SoC) that can be found on smartphones. We focused on the chips designed by ARM. Through physical attacks we wanted to show that it was possible to affect the microarchitecture on which the entire functioning of these systems is based. All the protections that can be implemented later at the software level are based on the microarchitecture and therefore become ineffective when it is attacked. For IoT devices, we have highlighted the possibility of obtaining information or total control of the device by means of a fault injection. In this case, fault injections are used as software attack triggers. They also allow software protection to be bypassed. For smartphone devices, we were initially able to extract information contained within a SoC, using electromagnetic listening and characterization of its behavior. In a second step, we were able to show that in the event of a fault, random behaviours can occur, we characterized and proposed explanations for these behaviours. Demonstrating and on systems more advanced than IoT, it is still possible to use physical attacks. Finally, we proposed possible improvements in relation to our various findings during this work.
Complete list of metadatas

Cited literature [113 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-02418822
Contributor : Abes Star :  Contact
Submitted on : Thursday, December 19, 2019 - 10:37:08 AM
Last modification on : Friday, April 10, 2020 - 2:11:18 AM
Document(s) archivé(s) le : Friday, March 20, 2020 - 2:01:02 PM

File

BUKASA_Sebanjila_Kevin.pdf
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-02418822, version 1

Citation

Sébanjila Kevin Bukasa. Analyse de vulnérabilité des systèmes embarqués face aux attaques physiques. Cryptographie et sécurité [cs.CR]. Université Rennes 1, 2019. Français. ⟨NNT : 2019REN1S042⟩. ⟨tel-02418822⟩

Share

Metrics

Record views

86

Files downloads

183