Farimah Farahmandi

University of Florida, USA

New frontiers in Security Verification: Fuzzing and Penetration Testing

Abstract

Modern Systems-on-Chips (SoCs) integrate numerous insecure intellectual properties to meet design-cost and time-to-market constraints. Incorporating these SoCs into security-critical systems severely threatens users’ privacy. Traditional formal/simulation-based verification techniques detect vulnerabilities to some extent. However, these approaches face challenges in detecting unknown vulnerabilities and suffer from significant manual efforts, false alarms, low coverage, and scalability. Fuzzing and penetration techniques should be developed to mitigate pre-silicon hardware verification limitations. Nevertheless, these techniques suffer from major challenges such as slow simulation platforms, extensive design knowledge requirements, and lacking consideration of untrusted inter-module communications. In this talk, I will present an emulation-based hybrid framework by combining formal verification and fuzz/penetration testing, leveraging their own benefits to effectively detect security vulnerabilities in large SoCs.

Biography

Dr. Farahmandi is Yangbin Wang Rising Star Endowed Assistant Professor in the Department of Electrical and Computer Engineering (ECE) and the associate director of the Florida Institute for Cybersecurity (FICS) at the University of Florida. Her research interests include hardware security verification, formal methods, and post-silicon validation. Her research has resulted in seven books, nine book chapters, and several publications in premier ACM/IEEE journals and conferences including IEEE Transactions on Computers, IEEE Transactions on CAD, Design Automation Conference (DAC), and Design Automation and Test in Europe (DATE). Her research has been recognized by several awards including NSF CAREER Award, the 2022 Semiconductor Research Corporation Young Faculty Award, the 2022 ECE Research Excellence Award, 2023 ECE Service Excellence Award, and 2024 Execellence Award in College of Engineering at UF. She is also the recipient of four best paper nominations from IEEE/ACM ASP-DAC and IEEE/ACM DATE. She is one of the co-founders of CAD4Sec Workshop. Currently, she is the program chair of IEEE HOST 2024. Her research has been sponsored by NSF, SRC, DARPA, AFRL, DoD, ONR, Analog Devices, ANSYS, Synopsys, and Cisco.

If you wish to modify any information or update your photo, please contact Web Chair Hiroki Matsutani.