XRAY: Detecting and Exploiting Vulnerabilities in Arm AXI Interconnects
METADATA ONLY
Loading...
Author / Producer
Date
2025
Publication Type
Conference Paper
ETH Bibliography
yes
Citations
Altmetric
METADATA ONLY
Data
Rights / License
Abstract
The Arm AMBA Advanced eXtensible Interface (AXI) interconnect is a critical IP in FPGA-based designs. While AXI and interconnect designs are primarily optimized for performance, their security requires closer investigation-any bugs in these components can potentially compromise critical IPs like processing systems and memory. To this end, XRAY systematically analyzes AXI interconnects. Specifically, it treats the AXI interconnect as a transaction processing block that is expected to adhere to certain properties (e.g., bus and data isolation, progress). Then, XRAY employs a traffic generator that creates transaction workloads with the aim of triggering violations in the AXI interconnects. As the last piece of the puzzle, XRAY checkers automatically flag transaction traces as either compliant, errors, or warnings. Put together, XRAY comprises 13 properties, has been tested on 7 interconnects and identifies 41 violations corresponding to 41 vulnerabilities. When compared to existing approaches such as verification IPs (VIPs) and protocol checkers from commercial tools, XRAY identifies 19 known and 22 new violations. We show the security impact of XRAY by sampling 5 XRAY violations to construct 3 proof-of-concept exploits on realistic scenarios deployed on FPGA to leak intermediate data, drop transactions, and corrupt memory.
Permanent link
Publication status
published
Editor
Book title
2025 Design, Automation & Test in Europe Conference (DATE)
Journal / series
Volume
Pages / Article No.
10992968
Publisher
IEEE
Event
28th Conference & Exhibition on Design, Automation & Test in Europe (DATE 2025)
Edition / version
Methods
Software
Geographic location
Date collected
Date created
Subject
AXI; interconnect; security; vulnerability
Organisational unit
09730 - Shinde, Shweta Shivaji / Shinde, Shweta Shivaji