CN101968840B - Voltage detection and frequency detection-based chip anti-attack method - Google Patents

Voltage detection and frequency detection-based chip anti-attack method Download PDF

Info

Publication number
CN101968840B
CN101968840B CN201010521977A CN201010521977A CN101968840B CN 101968840 B CN101968840 B CN 101968840B CN 201010521977 A CN201010521977 A CN 201010521977A CN 201010521977 A CN201010521977 A CN 201010521977A CN 101968840 B CN101968840 B CN 101968840B
Authority
CN
China
Prior art keywords
unit
chip
frequency
frequency detecting
voltage
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201010521977A
Other languages
Chinese (zh)
Other versions
CN101968840A (en
Inventor
徐功益
夏军虎
钱志恒
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
HANGZHOU SYNODATA SECURITY TECHNOLOGY CO., LTD.
Original Assignee
HANGZHOU SHENGYUAN CHIP TECHNIQUE CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by HANGZHOU SHENGYUAN CHIP TECHNIQUE CO Ltd filed Critical HANGZHOU SHENGYUAN CHIP TECHNIQUE CO Ltd
Priority to CN201010521977A priority Critical patent/CN101968840B/en
Publication of CN101968840A publication Critical patent/CN101968840A/en
Application granted granted Critical
Publication of CN101968840B publication Critical patent/CN101968840B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Power Sources (AREA)

Abstract

The invention relates to a voltage detection and frequency detection-based chip anti-attack method. A chip comprises a Central Processing Unit (CPU) main control unit, a frequency detecting unit, a voltage detecting unit, an anti-attack unit and a nonvolatile memory unit; core data for the normal operation of the chip is stored in the nonvolatile memory unit; an external clock input is monitored through the frequency detecting unit; once an input clock frequency is abnormal, the frequency detecting unit responds to the abnormal condition, and transmits a response result to the CPU main control unit; after receiving abnormal responses of the frequency detecting unit and the voltage detecting unit, the CPU main control unit controls the whole chip through the anti-attack unit, and protects the core data in the chip. The voltage detection and frequency detection-based chip anti-attack method has the advantages that: a voltage detecting module and a frequency detecting module are designed on the Integrated Circuit (IC) design level, abnormal power supply and clock frequency input into the chip are responded from the inside of the chip, and the anti-attack unit in the chip is started so as to prevent the chip from being attacked.

Description

The anti-attack method of a kind of chip based on voltage detecting and frequency detecting
Technical field
The present invention relates to SOC IC design field, the anti-attack method of especially a kind of chip based on voltage detecting and frequency detecting.
Background technology
Under the situation that the value of information is more and more paid attention to by people, information security has become the much-talked-about topic that industry is discussed.Along with the continuous development of attack technology, the solution of security system shifts to hardware especially integrated circuit from software gradually.Its reason is that hardware has the level of security of more increasing than software.
Yet, along with the continuous progress of measuring technique and analytical technology, many attack methods of encrypting integrated circuit that crack have appearred.The non-destructive attack method is owing to keep the physical package of chip, and attack technology threshold and cost are all lower, in chip attack, generally uses.To the attack of power supply with to the attack of clock frequency is two kinds of common attack means of non-physical attacks.
To the attack means of power supply with to the thinking of the attack means of clock frequency is input power supply or the clock frequency that increases or reduce chip; Make the working power or the clock frequency of chip depart from its normal range of operation; Chip operation gets muddled, thereby obtains unusual visit approach.
At present, domestic patent CN2840135 tells about the principle based on the anti-attack means of power supply and frequency to some extent, but discloses the anti-attack method based on the IC design level to these two types of attacks.
Summary of the invention
The object of the invention is exactly the shortcoming that will solve above-mentioned prior art, provides a kind of chip based on voltage detecting and frequency detecting anti-attack method.
The present invention solves the technical scheme that its technical matters adopts: the anti-attack method of this chip based on voltage detecting and frequency detecting; Chip system comprises CPU main control unit, frequency detecting unit, voltage detection unit, anti-unit and the Nonvolatile memery unit attacked, and in nonvolatile memory, deposits the core data of chip system operate as normal; Through frequency detecting unit the clock input of outside is monitored, in case the clock frequency of input takes place unusually, frequency detecting unit reacts to this unusually, and reaction result is passed to the CPU main control unit; Through voltage detection unit the supply voltage of outside is monitored; In case it is bigger that input voltage value and normal value depart from, voltage detection module reacts to this variation, and reaction result is passed to the CPU main control unit; Voltage detection unit is an analog module; Accept the supply voltage of chip exterior, produce too high or too low voltage signal, select output to reset or interrupt by CPU main control unit control; After the CPU main control unit receives the abnormal response of frequency detecting unit and voltage detection unit, the entire chip system is controlled, implement protection the core data of chip internal through the anti-unit of attacking.
As preferably, in the said frequency detecting unit, encircle the reference clock f of the generation frequency detecting of shaking 1, ring shakes and is analog module, with the ring Disable that shakes, reference clock f 1Clock frequency is reduced to f behind frequency divider 2This clock carries out the frequency meter counting as the reference clock of frequency meter to outside input clock, and count results gets into comparer; Can accept the height limiting frequency with the preset chip of CPU main control unit compares; According to the output that comparative result produces frequency detecting, this is output as and resets or interrupt, and sends into the CPU main control unit.
As preferably, the anti-protected mode of taking the unit of attacking has three kinds.
1, the anti-output that resets of attacking unit reception voltage detection unit and frequency detecting unit directly resets to entire chip, cuts off the read channel of the core data of nonvolatile storage.
2, anti-interruption output of attacking unit reception voltage detection unit and frequency detecting unit starts and interrupts, and by interrupt service routine the core data in the chip is implemented to protect, and cuts off the read operation of CPU to the core data district of nonvolatile memory.
3, anti-attack the unit and receive resetting of voltage detection unit or frequency detecting unit or interrupts exporting after; Start hardware protection circuit; Send to write or to insert to nonvolatile memory through bus and remove order, the core data of the nonvolatile storage of chip internal is rewritten or inserted and remove.
Preceding two kinds of anti-anti-attack patterns of taking the unit of attacking are a kind of weak methods of protecting; When chip is attacked by abnormal voltage or frequency; Chip cuts off the read channel in chip internal sensitive data district, and after chip re-powered, BOOT data and routine data still kept; And read channel is replied normal, and chip can operate as normal.The anti-attack method that the third anti-attack unit is taked is a kind of method of strong protection; When chip is attacked by abnormal voltage or frequency; The chip internal nonvolatile memory BOOT data and routine data rewritten or insert and remove, after chip re-powers, the BOOT data read error; The reader data also make a mistake, and chip can't be reworked again.Selection in the LZT that anti-attack unit antagonism being attacked receives the control of CPU main control unit, and the CPU main control unit can any anti-attack pattern of Disable.The third anti-attack method is destructive big to chip, only adopts in the high security occasion.
The effect that the present invention is useful is: the present invention mainly is the aspect from the IC design; Design voltage detection module and frequency detection module; From chip internal the unusual power supply and the clock frequency of input chip are reacted, start the anti-attack unit of chip internal, chip is immune against attacks.
Description of drawings
Fig. 1 is a systematic square frame structural representation of the present invention;
Fig. 2 is the frame structure synoptic diagram of frequency detecting unit of the present invention;
Fig. 3 is a kind of embodiment 1 synoptic diagram of anti-attack of the present invention unit;
Fig. 4 is a kind of embodiment 2 synoptic diagram of anti-attack of the present invention unit;
Fig. 5 is a kind of embodiment 3 synoptic diagram of anti-attack of the present invention unit.
Embodiment
Below in conjunction with accompanying drawing and embodiment the present invention is described further:
As shown in Figure 1, the present invention is a kind of based on voltage detecting and the anti-attack method of frequency detecting chip, comprising: CPU main control unit, frequency detecting unit, voltage detection unit, anti-unit and the Nonvolatile memery unit attacked.
Said CPU main control unit (101) is the working centre of chip, is various application and developments, comprises that anti-attack control provides hardware platform, generally comprises CPU core and storage resources, like RAM, ROM etc.
Said frequency detecting unit (102) is monitored the clock input of outside, in case the clock frequency of input takes place unusually, frequency detecting unit reacts to this unusually, and reaction result is passed to the CPU main control unit, and it realizes that block diagram is (Fig. 2):
Ring shakes and produces the reference clock f of frequency detecting 1, ring shakes and is analog module, can be with the ring Disable that shakes for reducing power consumption CPU main control unit.Reference clock f 1Clock frequency is reduced to f behind frequency divider 2, this clock carries out the frequency meter counting as the reference clock of frequency meter to outside input clock, and count results gets into comparer, can accept the height limiting frequency with the preset chip of CPU main control unit and compare.According to the output that comparative result produces frequency detecting, this is output as and resets (fd_reset) or interrupt (fd_isr), sends into the CPU main control unit.
Said voltage detection unit (104) is monitored the supply voltage of outside, in case that input voltage value and normal value depart from is bigger, voltage detection module reacts to this variation, and reaction result is passed to the CPU main control unit.Voltage detection unit is an analog module, accepts the supply voltage of chip exterior, produces too high or too low voltage signal, is selected output to reset (vd_reset) or is interrupted (vd_isr) by CPU main control unit control.
Said nonvolatile memory (105) is deposited the core data of chip system operate as normal, and ROM, FLASH etc. are arranged usually.The BOOT data of chip and routine data leave in the nonvolatile memory usually, and after changing the BOOT data, chip can't normally start once more.And routine data is the sensitive data of chip, does not normally hope what the rival obtained, and its security needs to lay special stress on protecting in the chip design process.
Said anti-attack unit (103) is the anti-attack core component of CPU main control unit; After CPU receives the abnormal response of frequency detecting unit and voltage detection unit; Through the anti-unit of attacking the entire chip system is controlled, implement protection the critical data of chip internal.
Embodiment 1
The anti-output that resets (fd_reset or vd_reset) of attacking unit reception voltage detection unit and frequency detecting unit directly resets to entire chip, cuts off the read channel of the sensitive data of nonvolatile storage.This method requires the maximum address space in sensitive data district to fix, and sensitive data should not surpass this maximum memory space in application process.
As shown in Figure 3, VPP is the power supply of chip, and Clk is the clock source of chip, under the normal condition chip by electrification reset (POR) to system reset.Frequency detecting (FD) and power supply detect clock frequency and the power supply that (VR) detects input respectively; Frequency is too high or too low with Fhout or Flout output; Overtension or height be with Vhout or Vlout output, the attack protection unit detect Fhout, Flout or Vhout, Vlout arbitrary effectively after, stages of labor reset signal Rst_Fd_Vr; The output Rst_Por_Pdr that resets of this signal and electrification reset does the combinational logic operation, as the system reset of chip.Combinatorial logic unit realization Rst_Fd_Vr and Rst_Por_Pdr are arbitrary effectively, and system promptly resets.This embodiment is to first kind of anti-attack method.
Embodiment 2
Anti-interruption output (fd_isr or vd_isr) of attacking unit reception voltage detection unit and frequency detecting unit; Start and interrupt; By interrupt service routine the sensitive data in the chip is implemented protection, as cutting off the read operation of CPU to the sensitive data district of nonvolatile memory.This method is more flexible to the requirement in sensitive data district, and the user can implement protection to corresponding sensitive data district according to the size of employed sensitive data.
As shown in Figure 4, VPP is the power supply of chip, and Clk is the clock source of chip, and the system reset of chip is produced by POR.Frequency detecting (FD) and power supply detect clock frequency and the power supply that (VR) detects input respectively; Frequency is too high or too low with Fhout or Flout output; Overtension or height are with Vhout or Vlout output; The attack protection unit detect Fhout, Flout or Vhout, Vlout arbitrary effectively after, stages of labor look-at-me Isr_Fd_Vr.Other interrupt sources in this look-at-me and the system (Isr0 ..., Isrn) through producing a look-at-me after the interrupt control, through the outside interrupt service routine of human-computer interactive control flip chip.Through the read operation of bus to nonvolatile memory, data are stolen interrupt service routine in the protected storage through core logic Disable.This embodiment is to second kind of anti-attack method.
Embodiment 3
After anti-attack unit receives resetting of voltage detection unit or frequency detecting unit or interrupts output; Start hardware protection circuit; Send to write or to insert to nonvolatile memory through bus and remove order, the BOOT data or the sensitive data of the nonvolatile storage of chip internal are rewritten or inserted and remove.
As shown in Figure 5, after system powered on, FD and VR got into the default pattern, started the trim read operation of FLASH this moment, and the trim read operation is to carry out read command from the trim data field of FLASH, reads the trim data of FD and VR, and the trim read operation is not controlled by CPU.After FD, VR received correct trim value, FD and VR got into the active pattern, frequency detecting and voltage detecting operate as normal, incoming frequency and clock just often, CPU pass through the FLASH controller and FLASH mutual.In case when having abnormal frequency input or input voltage offset excessive; CPU starts the anti-unit of attacking, and carries out write operation to the trim data field of FLASH, changes the trim value of FD and VR operate as normal; With chip reset, FLASH is protected with the sensitive data in other nonvolatile memories simultaneously.
Because trim value starts the anti-unit of attacking by CPU and rewritten when Clk or Vpp are unusual in the FLASH, so after chip powers on once more, operate the trim value of delivering to FD and VR through trim and can not make FD and VR operate as normal, chip can't get into normal mode of operation.
The key of this anti-attack pattern is: in case detect the attack based on voltage or frequency, chip just automatically performs self-destruction, and is big to the destructiveness of chip, is not that too high occasion does not advise using in security requirement.This instance is the third control attack method.
Terminological interpretation
FD: frequency detecting
VR: voltage detecting
POR: electrification reset
PDR: reply the position down by cable
OTP: disposable programmable ROM
Non-physical attacks: do not destroy the attack technology of the physical package of chip, utilize temperature, voltage, frequency etc. that chip operation is got muddled, to steal one type of attack method of data inside chips.
Except that the foregoing description, the present invention can also have other embodiments.All employings are equal to the technical scheme of replacement or equivalent transformation formation, all drop on the protection domain of requirement of the present invention.

Claims (4)

1. anti-attacking system of the chip based on voltage detecting and frequency detecting; It is characterized in that: chip system comprises CPU main control unit, frequency detecting unit, voltage detection unit, anti-unit and the Nonvolatile memery unit attacked, and in nonvolatile memory, deposits the core data of chip system operate as normal; Through frequency detecting unit the clock input of outside is monitored, in case the clock frequency of input takes place unusually, frequency detecting unit reacts to this unusually, and reaction result is passed to the CPU main control unit; Through voltage detection unit the supply voltage of outside is monitored; In case it is bigger that input voltage value and normal value depart from, voltage detection unit reacts to this variation, and reaction result is passed to the CPU main control unit; Voltage detection unit is an analog module; Accept the supply voltage of chip exterior, produce too high or too low voltage signal, select output to reset or interrupt by CPU main control unit control; After the CPU main control unit receives the abnormal response of frequency detecting unit and voltage detection unit, the entire chip system is controlled, implement protection the core data of chip internal through the anti-unit of attacking; In the said frequency detecting unit, ring shakes and produces the reference clock f of frequency detecting 1, ring shakes and is analog module, with the ring Disable that shakes, reference clock f 1Clock frequency is reduced to f behind frequency divider 2This clock carries out the frequency meter counting as the reference clock of frequency meter to outside input clock, and count results gets into comparer; Can accept the height limiting frequency with the preset chip of CPU main control unit compares; According to the output that comparative result produces frequency detecting, this is output as and resets or interrupt, and sends into the CPU main control unit.
2. the anti-attacking system of the chip based on voltage detecting and frequency detecting according to claim 1; It is characterized in that: the anti-output that resets of attacking unit reception voltage detection unit and frequency detecting unit; Directly entire chip is resetted, cut off the read channel of the core data of nonvolatile storage.
3. based on the anti-attacking system of the described chip of claim 1 based on voltage detecting and frequency detecting; It is characterized in that: anti-interruption output of attacking unit reception voltage detection unit and frequency detecting unit; Start and interrupt; By interrupt service routine the core data in the chip is implemented protection, cut off the read operation of CPU to the core data district of nonvolatile memory.
4. the anti-attacking system of the chip based on voltage detecting and frequency detecting according to claim 1; It is characterized in that: after anti-attack unit receives resetting of voltage detection unit or frequency detecting unit or interrupts output; Start hardware protection circuit; Send to write or to insert to nonvolatile memory through bus and remove order, the core data of the nonvolatile storage of chip internal is rewritten or wiped.
CN201010521977A 2010-10-26 2010-10-26 Voltage detection and frequency detection-based chip anti-attack method Active CN101968840B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201010521977A CN101968840B (en) 2010-10-26 2010-10-26 Voltage detection and frequency detection-based chip anti-attack method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201010521977A CN101968840B (en) 2010-10-26 2010-10-26 Voltage detection and frequency detection-based chip anti-attack method

Publications (2)

Publication Number Publication Date
CN101968840A CN101968840A (en) 2011-02-09
CN101968840B true CN101968840B (en) 2012-09-26

Family

ID=43547993

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201010521977A Active CN101968840B (en) 2010-10-26 2010-10-26 Voltage detection and frequency detection-based chip anti-attack method

Country Status (1)

Country Link
CN (1) CN101968840B (en)

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104679196B (en) * 2015-03-10 2018-07-06 江苏邦融微电子有限公司 System and its implementation are resetted when processor-based self-test, exception
CN114968651A (en) * 2016-06-24 2022-08-30 国民技术股份有限公司 System with attack protection architecture
CN106209034B (en) * 2016-07-22 2019-01-18 天津大学 A kind of high frequency clock frequency detecting structure for attack resistance chip
CN106843435A (en) * 2016-12-21 2017-06-13 深圳市紫光同创电子有限公司 A kind of chip reset circuit and method for PLD
CN108535624B (en) * 2017-03-06 2020-08-07 中芯国际集成电路制造(上海)有限公司 Integrated circuit chip and protection method and device thereof
CN106683703B (en) 2017-03-15 2023-09-15 珠海零边界集成电路有限公司 Data reading method, integrated circuit and chip
WO2019078832A1 (en) 2017-10-18 2019-04-25 Hewlett-Packard Development Company, L.P. Integrated circuit device for a replaceable printer component
CN107908509A (en) * 2017-11-07 2018-04-13 晶晨半导体(上海)股份有限公司 A kind of automated testing method for processor
CN108510668A (en) * 2018-03-01 2018-09-07 杭州晟元数据安全技术股份有限公司 A kind of fingerprint Storage Cabinets
CN109741578A (en) * 2018-12-05 2019-05-10 大唐微电子技术有限公司 A kind of the tamper detection device and method of security terminal
TWI700605B (en) * 2018-12-28 2020-08-01 新唐科技股份有限公司 Clock frequency attack detectiing system of secure chip
CN109782154A (en) * 2019-02-27 2019-05-21 大唐微电子技术有限公司 A kind of tamper detection protection circuit, implementation method and tamper chip
CN110032485B (en) * 2019-04-17 2020-05-26 清华大学 Multi-core processor and fault injection method thereof
CN113051132A (en) * 2021-03-30 2021-06-29 联想(北京)有限公司 Electronic equipment and control method
CN114416494B (en) * 2022-04-01 2022-06-17 北京密码云芯科技有限公司 Clock frequency abnormity monitoring device and method

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN2840135Y (en) * 2005-08-19 2006-11-22 北京兆日科技有限责任公司 Structure for preventing nondestructive physical attacking safety chip
CN201146055Y (en) * 2008-01-15 2008-11-05 上海海尔集成电路有限公司 Flash memory microcontroller
CN101593014B (en) * 2008-05-30 2012-09-19 华硕电脑股份有限公司 Power supply management module and computer

Also Published As

Publication number Publication date
CN101968840A (en) 2011-02-09

Similar Documents

Publication Publication Date Title
CN101968840B (en) Voltage detection and frequency detection-based chip anti-attack method
US7372304B2 (en) System and method for glitch detection in a secure microcontroller
US8604824B2 (en) Hacking detecting device, integrated circuit and method of detecting a hacking attempt
CN101373629B (en) Clock signal generator, semiconductor memory device including same, and methods of operating same
US7503501B2 (en) Abnormal condition detection circuit, integrated circuit card having the circuit, and method of operating CPU
CN107533607B (en) Attack detection by signal delay monitoring
EP1738296B1 (en) Contactless card
US8060664B2 (en) Integrated circuit having a plurality of interfaces and integrated circuit card having the same
JP2003296680A (en) Data processor
CN106684985B (en) Wireless charging control method and wireless charging device
CN101685035A (en) SIM card, method and device for detecting temperature of SIM card
EP3332331A1 (en) Memory access control
US7787315B2 (en) Semiconductor device and method for detecting abnormal operation
US8783576B2 (en) Memory card having multiple interfaces and reset control method thereof
US20120246431A1 (en) Electronic equipment system and storage device
US20140049359A1 (en) Security device and integrated circuit including the same
KR20060034995A (en) Integrated circuit card for reducing power consumption
KR100884566B1 (en) Smart card having laser attack detector
JP2016085520A (en) Portable electronic device
CN103778392A (en) Data safety device and temperature sensing circuit thereof
US8332662B2 (en) Semiconductor integrated circuit and testing method thereof
US8850559B2 (en) Security method of a portable device
CN107039058B (en) Memory device
CN212749837U (en) Laser injection attack detection circuit and security chip
CN115080961A (en) Fault injection attack detection circuit and method, electronic device, and medium

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C56 Change in the name or address of the patentee
CP02 Change in the address of a patent holder

Address after: The city of Hangzhou in West Zhejiang province 311121 No. 998 Building 9 East Sea Park

Patentee after: Hangzhou Shengyuan Chip Technique Co., Ltd.

Address before: 310012, room 17, building 176, 203 Tianmu Mountain Road, Hangzhou, Zhejiang, Xihu District

Patentee before: Hangzhou Shengyuan Chip Technique Co., Ltd.

C56 Change in the name or address of the patentee
CP01 Change in the name or title of a patent holder

Address after: The city of Hangzhou in West Zhejiang province 311121 No. 998 Building 9 East Sea Park

Patentee after: HANGZHOU SYNODATA SECURITY TECHNOLOGY CO., LTD.

Address before: The city of Hangzhou in West Zhejiang province 311121 No. 998 Building 9 East Sea Park

Patentee before: Hangzhou Shengyuan Chip Technique Co., Ltd.