Machine Learning and Hardware security: Challenges and Opportunities -Invited Talk-

Francesco Regazzoni; Shivam Bhasin; Amir Ali Pour; Ihab Alshaer; Furkan Aydin; Aydin Aysu; Vincent Beroulle; Giorgio Di Natale; Paul Franzon; David Hely; Naofumi Homma; Akira Ito; Dirmanto Jap; Priyank Kashyap; Ilia Polian; Seetal Potluri; Rei Ueno; Elena Ioana Vatajelu; Ville Oskari Yli Maeyry

doi:10.1145/3400302.3416260

Machine Learning and Hardware security: Challenges and Opportunities -Invited Talk-

Francesco Regazzoni, Shivam Bhasin, Amir Ali Pour, Ihab Alshaer, Furkan Aydin, Aydin Aysu, Vincent Beroulle, Giorgio Di Natale, Paul Franzon, David Hely, Naofumi Homma, Akira Ito, Dirmanto Jap, Priyank Kashyap, Ilia Polian, Seetal Potluri, Rei Ueno, Elena Ioana Vatajelu, Ville Oskari Yli Maeyry

Systems & Software Division

Research output: Contribution to journal › Conference article › peer-review

8 Citations (Scopus)

Abstract

Machine learning techniques have significantly changed our lives. They helped improving our everyday routines, but they also demonstrated to be an extremely helpful tool for more advanced and complex applications. However, the implications of hardware security problems under a massive diffusion of machine learning techniques are still to be completely understood. This paper first highlights novel applications of machine learning for hardware security, such as evaluation of post quantum cryptography hardware and extraction of physically unclonable functions from neural networks. Later, practical model extraction attack based on electromagnetic side-channel measurements are demonstrated followed by a discussion of strategies to protect proprietary models by watermarking them.

Original language	English
Article number	9256522
Journal	IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers
Volume	2020-November
DOIs	https://doi.org/10.1145/3400302.3416260
Publication status	Published - 2020 Nov 2
Event	39th IEEE/ACM International Conference on Computer-Aided Design, ICCAD 2020 - Virtual, San Diego, United States Duration: 2020 Nov 2 → 2020 Nov 5

ASJC Scopus subject areas

Software
Computer Science Applications
Computer Graphics and Computer-Aided Design

Access to Document

10.1145/3400302.3416260

Cite this

Regazzoni, F., Bhasin, S., Pour, A. A., Alshaer, I., Aydin, F., Aysu, A., Beroulle, V., Di Natale, G., Franzon, P., Hely, D., Homma, N., Ito, A., Jap, D., Kashyap, P., Polian, I., Potluri, S., Ueno, R., Vatajelu, E. I., & Yli Maeyry, V. O. (2020). Machine Learning and Hardware security: Challenges and Opportunities -Invited Talk-. IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers, 2020-November, [9256522]. https://doi.org/10.1145/3400302.3416260

Regazzoni, F, Bhasin, S, Pour, AA, Alshaer, I, Aydin, F, Aysu, A, Beroulle, V, Di Natale, G, Franzon, P, Hely, D, Homma, N, Ito, A, Jap, D, Kashyap, P, Polian, I, Potluri, S, Ueno, R, Vatajelu, EI & Yli Maeyry, VO 2020, 'Machine Learning and Hardware security: Challenges and Opportunities -Invited Talk-', IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers, vol. 2020-November, 9256522. https://doi.org/10.1145/3400302.3416260

@article{e9a04db98673448e90ed802a19bcaeaf,

title = "Machine Learning and Hardware security: Challenges and Opportunities -Invited Talk-",

abstract = "Machine learning techniques have significantly changed our lives. They helped improving our everyday routines, but they also demonstrated to be an extremely helpful tool for more advanced and complex applications. However, the implications of hardware security problems under a massive diffusion of machine learning techniques are still to be completely understood. This paper first highlights novel applications of machine learning for hardware security, such as evaluation of post quantum cryptography hardware and extraction of physically unclonable functions from neural networks. Later, practical model extraction attack based on electromagnetic side-channel measurements are demonstrated followed by a discussion of strategies to protect proprietary models by watermarking them.",

author = "Francesco Regazzoni and Shivam Bhasin and Pour, {Amir Ali} and Ihab Alshaer and Furkan Aydin and Aydin Aysu and Vincent Beroulle and {Di Natale}, Giorgio and Paul Franzon and David Hely and Naofumi Homma and Akira Ito and Dirmanto Jap and Priyank Kashyap and Ilia Polian and Seetal Potluri and Rei Ueno and Vatajelu, {Elena Ioana} and {Yli Maeyry}, {Ville Oskari}",

note = "Funding Information: This work was performed in the Cooperative Research Project of the Research Institute of Electrical Communication, Tohoku University with Nanyang Technological University. This research is supported in part by the NSF under the Grants No. CNS 16-244770 (Center for Advanced Electronics through Machine Learning), by JST CREST Grant No.jPMjCR19KS,]apan, and by European Union's Horizon 2020 research and innovation programme CPSoSaware (grant agreement No 871738). The authors thank Paolo Palmieri and Dado Smailbegovic for the fruitful discussion about protection ofmachine learning algorithms. Publisher Copyright: {\textcopyright} 2020 Association on Computer Machinery.; 39th IEEE/ACM International Conference on Computer-Aided Design, ICCAD 2020 ; Conference date: 02-11-2020 Through 05-11-2020",

year = "2020",

month = nov,

day = "2",

doi = "10.1145/3400302.3416260",

language = "English",

volume = "2020-November",

journal = "IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers",

issn = "1092-3152",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - JOUR

T1 - Machine Learning and Hardware security

T2 - 39th IEEE/ACM International Conference on Computer-Aided Design, ICCAD 2020

AU - Regazzoni, Francesco

AU - Bhasin, Shivam

AU - Pour, Amir Ali

AU - Alshaer, Ihab

AU - Aydin, Furkan

AU - Aysu, Aydin

AU - Beroulle, Vincent

AU - Di Natale, Giorgio

AU - Franzon, Paul

AU - Hely, David

AU - Homma, Naofumi

AU - Ito, Akira

AU - Jap, Dirmanto

AU - Kashyap, Priyank

AU - Polian, Ilia

AU - Potluri, Seetal

AU - Ueno, Rei

AU - Vatajelu, Elena Ioana

AU - Yli Maeyry, Ville Oskari

N1 - Funding Information: This work was performed in the Cooperative Research Project of the Research Institute of Electrical Communication, Tohoku University with Nanyang Technological University. This research is supported in part by the NSF under the Grants No. CNS 16-244770 (Center for Advanced Electronics through Machine Learning), by JST CREST Grant No.jPMjCR19KS,]apan, and by European Union's Horizon 2020 research and innovation programme CPSoSaware (grant agreement No 871738). The authors thank Paolo Palmieri and Dado Smailbegovic for the fruitful discussion about protection ofmachine learning algorithms. Publisher Copyright: © 2020 Association on Computer Machinery.

PY - 2020/11/2

Y1 - 2020/11/2

N2 - Machine learning techniques have significantly changed our lives. They helped improving our everyday routines, but they also demonstrated to be an extremely helpful tool for more advanced and complex applications. However, the implications of hardware security problems under a massive diffusion of machine learning techniques are still to be completely understood. This paper first highlights novel applications of machine learning for hardware security, such as evaluation of post quantum cryptography hardware and extraction of physically unclonable functions from neural networks. Later, practical model extraction attack based on electromagnetic side-channel measurements are demonstrated followed by a discussion of strategies to protect proprietary models by watermarking them.

AB - Machine learning techniques have significantly changed our lives. They helped improving our everyday routines, but they also demonstrated to be an extremely helpful tool for more advanced and complex applications. However, the implications of hardware security problems under a massive diffusion of machine learning techniques are still to be completely understood. This paper first highlights novel applications of machine learning for hardware security, such as evaluation of post quantum cryptography hardware and extraction of physically unclonable functions from neural networks. Later, practical model extraction attack based on electromagnetic side-channel measurements are demonstrated followed by a discussion of strategies to protect proprietary models by watermarking them.

UR - http://www.scopus.com/inward/record.url?scp=85097934656&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85097934656&partnerID=8YFLogxK

U2 - 10.1145/3400302.3416260

DO - 10.1145/3400302.3416260

M3 - Conference article

AN - SCOPUS:85097934656

SN - 1092-3152

VL - 2020-November

JO - IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers

JF - IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers

M1 - 9256522

Y2 - 2 November 2020 through 5 November 2020

ER -

Machine Learning and Hardware security: Challenges and Opportunities -Invited Talk-

Abstract

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this